b"   U.S. SECURITIES AND EXCHANGE COMMISSION\n\n\n OFFICE OF INSPECTOR GENERAL\n\n\nSEMIANNUAL REPORT TO CONGRESS\n   October 1, 2010 - March 31, 2011\n\x0c                        Organizational Chart                Office of Inspector General\n\n\n\n                                                  Inspector General\n\n\n\n\n                                                       Deputy\n                                                  Inspector General\n\n\n      Counsel to the\n    Inspector General\n                                                 Assistant Inspector\n                                                                                  Assistant Inspector\n                                                     General for\n\n\n\n\n2\n                                                                                  General for Audits\n                             Investigative\n                                                   Investigations\n        Paralegal\n                               Specialist\n\n                                                Senior             Senior       Audit            Audit\n                                             Investigator       Investigator   Manager          Manager\n                               Inquiry\n        Assistant to          Specialist\n       the Inspector\n          General                               Senior             Senior       Audit            Audit\n                                             Investigator       Investigator   Manager          Manager\n                                Legal\n                              Specialist\n      Administrative\n         Of\xef\xac\x81cer                                                                 Audit            Audit\n                                             Investigator       Investigator\n                                                                               Manager          Manager\n\n                                                                                                 Audit\n                                                                                Editor\n                                                                                                Assistant\n\x0cOctober 1, 2010 - March 31, 2011\n\n                                                                    OFFICE OF\n                                                                    INSPECTOR\n                                         U.S. Securities\n                                         and Exchange               GENERAL\n                                          Commission\n                                                                    SEMIANNUAL\n                                                                    REPORT TO\n                                                                    CONGRESS\n                                    MISSION\n                                        The mission of the Of\xef\xac\x81ce of Inspector General (OIG) is to promote the integrity, ef\xef\xac\x81ciency,\n                                    and effectiveness of the critical programs and operations of the United States Securities and Ex-\n                                    change Commission (SEC or Commission). \xc2\xa0This mission is best achieved by having an effective,\n                                    vigorous, and independent of\xef\xac\x81ce of seasoned and talented professionals who perform the follow-\n                                    ing functions: \xc2\xa0\n\n                                    \xe2\x80\xa2\r     Conducting independent and objec-               \xe2\x80\xa2\t   Offering expert assistance to improve SEC\n                                           tive audits, evaluations, investigations,            programs and operations;\n                                           and other reviews of SEC programs\n                                           and operations;                                 \xe2\x80\xa2\t   Communicating timely and useful infor-\n                                                                                                mation that facilitates management deci-\n                                    \xe2\x80\xa2\t    Preventing and detecting fraud, waste,                sion making and the achievement of\n                                          abuse, and mismanagement in SEC pro-                  measurable gains; and\n                                          grams and operations;\n                                                                                           \xe2\x80\xa2\t   Keeping the Commission and the Con-\n                                    \xe2\x80\xa2\t    Identifying vulnerabilities in SEC systems            gress fully and currently informed of sig-\n                                          and operations and recommending con-                  ni\xef\xac\x81cant issues and developments.\n                                          structive solutions;\n\n\n\n\n                                                                                       3\n\x0c4\n\x0cU.S. Securities and Exchange Commission\n\n\n                                                                                   SEMIANNUAL\n                                                  Of\xef\xac\x81ce of\n                                                                                   REPORT TO\n                                                 Inspector\n                                                  General                          CONGRESS\n                                           CONTENTS\n                                           MESSAGE FROM THE INSPECTOR GENERAL..............................................................\n                                                                             \r                                                             1\n\n\n                                           MANAGEMENT AND ADMINISTRATION\r........................................................................3\n\n                                                Agency Overview\r....................................................................................................................3\n\n                                                OIG Staffing\r............................................................................................................................3\n\n\n                                           CONGRESSIONAL TESTIMONY, REQUESTS, AND BRIEFINGS\r...................................5\n\n                                                Inspector General Testimony and Related Follow-Up Activities \t................................................\n5\n\n                                                Other Requests and Briefings \t.................................................................................................\n9\n\n                                           ADVICE AND ASSISTANCE PROVIDED TO THE AGENCY AND THE GOVERNMENT \n\n                                           ACCOUNTABILITY OFFICE\r...........................................................................................11\n\n\n                                           OIG SEC EMPLOYEE SUGGESTION HOTLINE\r............................................................15\n\n                                                Examples of Suggestions Received\t......................................................................................\n17\n                                                   Office Real Estate Leases \t...............................................................................................17\n\n                                                   SEC Website and EDGAR Database\r...............................................................................17\n\n                                                   Receipt of Electronic Documents\r....................................................................................17\n\n                                                   Notification of Operating Status \t......................................................................................\n18\n                                                   Referral to Audit Unit.......................................................................................................\n                                                                         \r                                                                                                      18\n\n                                                Examples of Allegations Received\r.........................................................................................18\n\n                                                   Inappropriate Involvement in Employee\xe2\x80\x99s Time and Attendance\r......................................18\n\n                                                   Referrals to Investigations Unit\t........................................................................................\n19\n\n                                           COORDINATION WITH OTHER OFFICES OF INSPECTOR GENERAL \t........................\n21\n\n\n                                           AUDITS AND EVALUATIONS\t.........................................................................................\n23\n\n                                                Overview\t...............................................................................................................................\n23\n\n\n\n\n\n                                                                                                           5\n\x0c        Audits\t.............................................................................................................................\n23\n\n        Evaluations \t.....................................................................................................................\n24\n\n        Audit Follow-up and Resolution\t......................................................................................\n24\n     Audits and Evaluations Conducted\t.......................................................................................24\n\n        SEC\xe2\x80\x99s Oversight of the Securities Investor Protection \n\n        \r Corporation\xe2\x80\x99s Activities (Report No. 495)......................................................................24\n\n                                                                      \r                                                                      \n\n        The SEC\xe2\x80\x99s Implementation of and Compliance with Homeland \n\n        \t Security Presidential Directive 12 (HSPD-12) (Report No. 481)\t.....................................\n28\n\n        OCIE Regional Offices\xe2\x80\x99 Referrals to Enforcement (Report No. 493)\r.................................32\n\n        Audit of the SEC Budget Execution Cycle (Report No. 488)\t............................................\n34\n\n        Review of Time-And-Materials and Labor-Hour Contracts (Report No. 487)\t....................\n37\n\n        2010 Annual FISMA Executive Summary Report (Report No. 489) \t..................................\n40\n\n     Pending Audits and Evaluations \t............................................................................................\n42\n\n        Oversight of and Compliance with Conditions and Representations \n\n        \t Related to Exemptive Orders and No-Action Letters \t....................................................\n42\n\n        Audit of Alternative Work Arrangements, Overtime Compensation, and \n\n        \t the COOP Program at the SEC\t....................................................................................\n42\n\n        Audit of the SEC\xe2\x80\x99s Employee Recognition Program and Retention, \n\n        \t Relocation, and Recruitment Incentives \t.......................................................................\n43\n\n        2010 Federal Information Security Management Act Assessments \t.................................\n43\n\nINVESTIGATIONS \t..........................................................................................................\n45\n\n     Overview\t...............................................................................................................................\n45\n\n     Investigations and Inquiries Conducted\t.................................................................................\n46\n\n         Investigation of Failure of an SEC Regional Office to Uncover Fraud \n\n         \t and Inappropriate Conduct on the Part of a \n\n         \t Senior-Level Official (Report No. OIG-533)\t...................................................................\n46\n\n         Investigation of Whether a Former Senior Official Violated Conflict-of-Interest \n\n         \t Restrictions in Connection With Employment at a Trading Firm \n\n         \t (Report No. OIG-540)\t..................................................................................................\n50\n\n         Improprieties in the Selection and Award of a Sole-Source \n\n         \t Contract (Report No. OIG-523)\t....................................................................................\n51\n\n         Abusive and Intimidating Behavior Within a Headquarters Branch \n\n         \t (Report No. OIG-537)\t..................................................................................................\n53\n\n         Abuse of Compensatory Time for Travel by a Headquarters Manager and \n\n         \t Ineffective Supervision by Management (Report No. OIG-538) \t.....................................\n54\n\n         Investigation Concerning the Role of Political Appointees in the \n\n         \t Freedom of Information Act Process (Report No. OIG-543) \t.........................................\n55\n\n         Unauthorized and Improper Disclosure by a Regional Office \n\n         \t Staff Attorney (Report No. OIG-550)\t............................................................................\n56\n\n         Improper Access to SEC Facilities and Computer Systems (Report No. OIG-544) \t..........\n56\n\n         Unauthorized Disclosure of Nonpublic Information During an \n\n         \t Active SEC Investigation (Report No. OIG-558) \t............................................................\n58\n\n         Improper Comments by a Regional Office Senior Counsel and \n\n         \t Alleged Abuse of Leave by a Regional Office Senior Counsel and \n\n         \t Senior Official (Report No. OIG-545)\t............................................................................\n59\n\n         Allegation of Negligence in the Conduct of an Enforcement \n\n         \t Investigation (Report No. OIG-510) \t..............................................................................\n59\n\n                                                                   6\n\x0c        Allegations of Unauthorized Disclosure of Nonpublic Information \n\n        \t (Report Nos. OIG-542, OIG-551, and OIG-552) \t...........................................................\n60\n\n        Allegation of Illegal and Unauthorized Disclosure of Employment \n\n        \t Status by Regional Office Senior Official (Report No. OIG-549) \t....................................\n61\n\n        Theft by a Headquarters Contractor (Report No. OIG-548) \t.............................................\n62\n\n        Investigation into Unauthorized Disclosure of Nonpublic \n\n        \t Information (Report No. OIG-546)\t................................................................................\n62\n\n        Misuse of Computer Resources and Official Time to \n\n        \t View Pornography (Report No. OIG-547 and PIs 11-05, 11-06, and 11-07) \t................\n63\n\n        Other Inquiries Conducted\t..............................................................................................\n65\n\n            Failure to Submit a Conflict-of-Interest Letter by Former \n\n            \t Regional Office Senior Official (PI 10-38) \t..................................................................\n65\n\n            Falsification of Time and Attendance Records, Abuse of \n\n            \t Telework and Lack of Supervisory Review (PI 10-05)\t...............................................\n66\n\n            Improper Travel Expenditures and Lack of \n\n            \t Supervisory Review (PI 09-113) \t...............................................................................\n66\n\n            Disclosure of Nonpublic Personnel Information and \n\n            \t Lack of Candor at Headquarters (PI 11-18) \t.............................................................\n67\n\n            Allegation of Misappropriation of Funds from the SEC Recreation \n\n            \t and Welfare Association (PI 10-50) \t..........................................................................\n68\n\n            Inappropriate Use of a Commission Database by a \n\n            \t Headquarters Attorney (PI 10-62) \t............................................................................\n69\n\n            Allegation of Conflicts of Interest by Former Regional Office \n\n            \t Senior Attorney (PI 10-53)\t........................................................................................\n69\n\n            Complaint of Conflict of Interest in the Awarding of Contracts (PI 09-97)\t...................\n70\n\n            Allegations of Improper Relationship Between a Headquarters \n\n            \t Senior Manager and an SEC Contractor (PI 10-33) \t..................................................\n70\n\n            Complaints Regarding Procurement Violations (PI 09-02) \t..........................................\n71\n\n    Indictment Arising out of Previous OIG Investigation\t..............................................................\n71\n\n    Pending Investigations \t..........................................................................................................\n72\n\n        Allegations of Conflict of Interest by Former Senior Official (Case No. OIG-560) \t..............\n72\n\n        Allegation of Improprieties in the SEC\xe2\x80\x99s Leasing Activities (Case No. OIG-553)\r................72\n\n        Complaint of Investigative Misconduct by Various \n\n            \t Enforcement Attorneys (Case No. OIG-511)\t............................................................\n73\n\n        Allegation of Improper Preferential Treatment (Case No. OIG-559) \t..................................\n73\n\n        Allegation of Failure to Investigate at a Regional Office (Case No. OIG-554) \t....................\n74\n\n        Allegation of Improper Preferential Treatment and Failure to \n\n            \tInvestigate Alleged Obstruction of SEC Investigation at \n\n            \t Regional Office (Case No. OIG-536) \t.........................................................................\n74\n\n        Allegation of Unauthorized Disclosures (Case No. OIG-555)\t............................................\n74\n\n        Allegation of Procurement Violations (Case No. OIG-556)\t...............................................\n74\n\n        Complaint of Mismanagement and Inappropriate Use of \n\n            \t Government Funds (Case No. OIG-557) \t..................................................................\n75\n\nREVIEW OF LEGISLATION AND REGULATIONS\t..........................................................\n77\n\n\nSTATUS OF RECOMMENDATIONS WITH NO MANAGEMENT DECISIONS \t................\n79\n\n\n\n                                                             7\n\x0cREVISED MANAGEMENT DECISIONS\t.........................................................................\n79\n\n\nAGREEMENT WITH SIGNIFICANT MANAGEMENT DECISIONS \t.................................\n79\n\n\nINSTANCES WHERE INFORMATION WAS REFUSED\t..................................................\n79\n\n\nTABLES\t\n     1\t    List of Reports: Audits and Evaluations\t...........................................................\n81\n\n     2\t    Reports Issued with Costs Questioned or Funds Put to Better Use \n\n     \t\t     (Including Disallowed Costs)\n                                       \t ...........................................................................\n\n                                          .                                                                         83\n\n     3\t    Reports with Recommendations on Which Corrective Action \n\n     \t\t    Has Not Been Completed\t...............................................................................\n85\n\n     4\t    Summary of Investigative Activity \t.....................................................................\n95\n\n     5\t    Summary of Complaint Activity \t........................................................................\n97\n\n     6\t    References to Reporting Requirements of the Inspector General Act \t...............\n99\n\n\nAppendix A: \tPeer Reviews of OIG Operations\t............................................................\n101\n\n\nAppendix B:\t Testimony of H. David Kotz, Inspector General of \n\n\t \t          the Securities and Exchange Commission, Before the \n\n\t \t          Subcommittee on Financial Services and General Government, \n\n\t \t          Committee on Appropriations, U.S. House of Representatives\t.............\n103\n\n\n\n\n                                                    8\n\x0c                        Message from the\n                        Inspector General\n                        I am pleased to present this Semiannual Report to Congress on the activities\n                        and accomplishments of the United States (U.S.) Securities and Exchange\n                        Commission (SEC or Commission) Of\xef\xac\x81ce of Inspector General (OIG) for\n                        the period of October 1, 2010 through March 31, 2011. This report is re-\n                        quired by the Inspector General Act of 1978, as amended, and covers the\n                        work performed by the OIG during the period indicated.\n\n    The audits, evaluations, and investigations described in this report illustrate the commitment of\nthe SEC OIG to promote ef\xef\xac\x81ciency and effectiveness in the SEC, as well as the crucial effect and\nimpact that the SEC OIG has had upon SEC operations.\n\n    During this reporting period, we issued several signi\xef\xac\x81cant audit reports on matters critical to the\nSEC\xe2\x80\x99s programs and operations. We conducted a review of the SEC\xe2\x80\x99s oversight of the Securities\nInvestor Protection Corporation\xe2\x80\x99s (SIPC) activities. While we found that the SEC\xe2\x80\x99s oversight of\nSIPC was generally in compliance with the pertinent statute, the Securities Investor Protection Act\n(SIPA), our audit determined that signi\xef\xac\x81cant improvements could be made to enhance the process of\nthe SEC\xe2\x80\x99s monitoring of SIPC. Speci\xef\xac\x81cally, the audit found that the SEC does not inspect SIPC\xe2\x80\x99s\nactivities in any systematic fashion and last performed a full inspection of SIPC in 2003. We also\nfound that the SEC lacked adequate written procedures and policies for its oversight of SIPC. We\nmade 12 recommendations to the agency, which when fully implemented, will enhance the SEC\xe2\x80\x99s\nmonitoring of SIPC and further ensure that the investing public is afforded adequate protection\nagainst losses caused by the failure of broker-dealers.\n\n    We also completed an audit of the SEC\xe2\x80\x99s implementation of and compliance with Homeland\nSecurity Presidential Directive (HSPD) 12. This Directive was signed by President George W. Bush\nin August 2004 and required federal agencies to have programs in place to ensure that identi\xef\xac\x81cation\nissued to federal employees and contractors meets a common standard. Our audit found de\xef\xac\x81ciencies\nin nearly every aspect of the SEC\xe2\x80\x99s HSPD-12 program, and we determined that the SEC missed vir-\ntually all of the deadlines established by Of\xef\xac\x81ce of Management and Budget (OMB) guidance for\nimplementation of HSPD-12. Our audit included 25 concrete and speci\xef\xac\x81c recommendations to im-\nprove the SEC\xe2\x80\x99s HSPD-12 program. SEC management concurred with all of these recommenda-\ntions and has already partially implemented several of them. Additionally, we completed several\nother audits during the semiannual reporting period, including a review of the processes by which\nthe Of\xef\xac\x81ce of Compliance Inspections and Examinations (OCIE) refers potential violations of the\nfederal securities laws to the Division of Enforcement in the SEC\xe2\x80\x99s regional of\xef\xac\x81ces, an audit of the\nSEC\xe2\x80\x99s budget execution cycle, a review of certain time-and-materials and labor-hour contracts, and\na review of the SEC\xe2\x80\x99s compliance with the Federal Information Security Management Act (FISMA).\n\n   We also had a particularly productive semiannual reporting period for investigations. With only\n\xef\xac\x81ve investigators, we completed approximately 20 investigations on a myriad of complex and signi\xef\xac\x81-\ncant issues, including the failure to uncover a $554 million Ponzi scheme, improprieties in the SEC\xe2\x80\x99s\nOf\xef\xac\x81ce of Information Technology\xe2\x80\x99s (OIT) acquisition of approximately $1 million of computer\nequipment, the alleged violation of post-employment restrictions, the role of political appointees in\n\n\n\n                                                     1\n\n\x0cthe Freedom of Information Act (FOIA) process, abusive and intimidating conduct in the work-\nplace, dissemination of false and misleading information regarding an active SEC enforcement\ninvestigation, unauthorized disclosures of nonpublic information, theft of funds, misuse of com-\nputer resources, and abuse of compensatory time for travel. We are also actively working on and\n\xef\xac\x81nalizing several additional investigations, including an investigation of the facts and circum-\nstances surrounding the SEC former General Counsel\xe2\x80\x99s involvement in activities relating to the\nBernard L. Madoff Ponzi scheme in light of a lawsuit brought against him and his brothers by\nthe trustee appointed in the Madoff liquidation under SIPA for the return of approximately $1.5\nmillion in \xef\xac\x81ctitious pro\xef\xac\x81ts received from the Ponzi scheme, and an investigation into allegations\nthat the agency\xe2\x80\x99s leasing activities and related procurements at the Constitution Center and Sta-\ntion Place III sites in Washington, D.C., have resulted in signi\xef\xac\x81cant waste of government funds\nand/or violated federal regulations.\n\n    This semiannual reporting period has also been a busy one for consultations and brie\xef\xac\x81ngs\nwith Congressional of\xef\xac\x81ces. We were very active in providing advice to and discussing issues with\nMembers of Congress and Congressional staff regarding a wide variety of matters affecting the\nSEC and the broader \xef\xac\x81nancial system, including the implementation and impact of numerous\nelements of the Dodd-Frank Wall Street Reform and Consumer Protection Act. On February\n10, 2011, I testi\xef\xac\x81ed before the Subcommittee on Financial Services and General Government,\nCommittee on Appropriations, U.S. House of Representatives, concerning my Of\xef\xac\x81ce\xe2\x80\x99s oversight\nefforts, including our identi\xef\xac\x81cation of waste, fraud, and abuse in SEC programs and operations\nand matters pertinent to the SEC\xe2\x80\x99s budget and funding levels.\n\n    I am also very pleased to report that during the semiannual reporting period, we received\nrecognition from our peers for our work. The Council of the Inspectors General on Integrity\nand Ef\xef\xac\x81ciency (CIGIE) selected our investigative team that produced a 457-page report entitled,\nInvestigation of Failure of the SEC to Uncover Bernard Madoff \xe2\x80\x99s Ponzi Scheme, issued on\nAugust 31, 2009, for the Gaston L. Gianni, Jr., Better Government Award in recognition of our\n\xe2\x80\x9cextraordinary efforts in expeditiously conducting this investigation critical to the improvement of\n\xef\xac\x81nancial regulation and the protection of investors.\xe2\x80\x9d\n\n    The accomplishments of my Of\xef\xac\x81ce have been enhanced by the continued support of the\nSEC Chairman and Commissioners, as well as the SEC\xe2\x80\x99s management team and employees. I\nlook forward to sustaining this productive and professional working relationship as we continue to\nhelp the SEC meet its important challenges.\n\n\n\n   \t           \t       \t      \t       \t       \t\n   \t           \t       \t      \t       \t       \t      \t       H. David Kotz\n   \t           \t       \t      \t       \t       \t      \t       Inspector General\n\n   \t\n\n   \t           \t       \t      \t       \t       \t      \t\n\n\n\n\n                                                     2\n\n\x0cU.S. Securities and Exchange Commission\n\n\n                                                                        SEMIANNUAL\n                                                                        REPORT TO\n                                                                        CONGRESS\n                                                 Of\xef\xac\x81ce of\n                                                Inspector\n                                                 General\n\n\n\n                                           MANAGEMENT AND\n                                           ADMINISTRATION\n                                           AGENCY OVERVIEW                                          sight Board, alternate trading systems, and\n                                                                                                    credit rating agencies.\n                                               The U.S. SEC\xe2\x80\x99s mission is to protect inves-\n                                           tors; maintain fair, orderly, and ef\xef\xac\x81cient mar-               In order to accomplish its mission most\n                                           kets; and facilitate capital formation. The              effectively and ef\xef\xac\x81ciently, the SEC is organized\n                                           SEC strives to promote a market environment              into \xef\xac\x81ve main divisions (Corporation Finance;\n                                           that is worthy of the public\xe2\x80\x99s trust and charac-         Enforcement; Investment Management; Trad-\n                                           terized by transparency and integrity. The               ing and Markets; and Risk, Strategy, and Fi-\n                                           SEC\xe2\x80\x99s core values consist of integrity, account-         nancial Innovation) and 16 functional of\xef\xac\x81ces.\n                                           ability, effectiveness, teamwork, fairness, and          The Commission\xe2\x80\x99s headquarters is located in\n                                           commitment to excellence. The SEC\xe2\x80\x99s goals                Washington, D.C., and there are 11 regional\n                                           are to foster and enforce compliance with the            of\xef\xac\x81ces located throughout the country. As of\n                                           federal securities laws; establish an effective          September 30, 2010, the SEC employed 3,748\n                                           regulatory environment; facilitate access to the         full-time equivalents (FTEs), consisting of\n                                           information investors need to make informed              3,664 permanent and 84 temporary FTEs.\n                                           investment decisions; and enhance the Com-\n                                           mission\xe2\x80\x99s performance through effective                  OIG STAFFING\n                                           alignment and management of human re-\n                                           sources, information, and \xef\xac\x81nancial capital.                  During the reporting period, the OIG\n                                                                                                    added an investigative specialist, a writer-\n                                               SEC staff monitor and regulate a securities          editor, and a part-time investigator to the staff,\n                                           industry that includes more than 35,000 regis-           thereby further increasing its capacity to con-\n                                           trants, including over 10,000 public compa-              duct its oversight responsibilities.\n                                           nies, about 11,500 investment advisers, about\n                                           7,800 mutual funds, and about 5,400 broker-                  In February 2011, K. Shane Bref\xef\xac\x81tt joined\n                                           dealers, as well as national securities exchanges        the OIG as an investigative specialist. Ms.\n                                           and self-regulatory organizations, 600 transfer          Bref\xef\xac\x81tt comes to us from the SEC\xe2\x80\x99s Of\xef\xac\x81ce of\n                                           agents, the Municipal Securities Rulemaking              Compliance Inspections and Examinations\n                                           Board, the Public Company Accounting Over-               (OCIE), where she served as a branch chief for\n                                                                                                    investment adviser and investment company\n\n\n                                                                                               3\n\n\x0cexaminations. She began her career with the                  In March 2011, Juliet D. Gardner, who had\nSEC in the Los Angeles Regional Of\xef\xac\x81ce in 1997            worked for the OIG during the previous semi-\nand later transferred to the headquarters of\xef\xac\x81ce          annual reporting period on detail from the Of-\nin 2005. Ms. Bref\xef\xac\x81tt has a Bachelor\xe2\x80\x99s degree in          \xef\xac\x81ce of Investor Education and Advocacy\naccounting, is a Certi\xef\xac\x81ed Public Accountant in           (OIEA), of\xef\xac\x81cially joined the OIG as an investi-\nthe State of Virginia, and is a Certi\xef\xac\x81ed Fraud           gator. In OIEA, Ms. Gardner responded to a\nExaminer. She is currently pursuing a Master\xe2\x80\x99s           wide range of securities-related questions, com-\ndegree in Economic Crime Management.                     plaints, and suggestions from investors and in-\n                                                         dustry professionals worldwide and analyzed\n     In March 2011, Esther Tepper joined the             incoming tips for potential referral to other SEC\nOIG as a writer-editor. She was previously a             divisions and of\xef\xac\x81ces. Ms. Gardner began her\ncommunications analyst in the OIG of the U.S.            legal career at the SEC in 1996, in the Division\nDepartment of the Treasury. Before serving at            of Enforcement, where she investigated allega-\nthe Treasury OIG, Ms. Tepper was a communi-              tions of market manipulation, insider trading,\ncations analyst in the Government Accountabil-           \xef\xac\x81nancial fraud, and securities offering fraud.\nity Of\xef\xac\x81ce\xe2\x80\x99s Financial Management and Assur-              Ms. Gardner is a 1991 graduate of Wittenberg\nance team. Ms. Tepper\xe2\x80\x99s other federal em-                University, where she received a Bachelor of\nployment includes nine years at the Environ-             Arts degree in Political Science. Ms. Gardner\nmental Protection Agency, where her responsi-            received her Juris Doctor degree cum laude from\nbilities included managing public outreach ac-           Marquette University in 1996.\ntivities related to childhood lead poisoning pre-\nvention. Ms. Tepper has a Bachelor\xe2\x80\x99s degree in               Finally, one of our Senior Investigators,\nAmerican Studies from Smith College and a                Heidi Steiber, left the OIG for an opportunity\nMaster\xe2\x80\x99s degree in Business Administration               in the private sector.\nfrom the Yale School of Management.\n\n\n\n\n                                                    4\n\n\x0cU.S. Securities and Exchange Commission\n\n\n                                                                      SEMIANNUAL\n                                                                      REPORT TO\n                                                                      CONGRESS\n                                                 Of\xef\xac\x81ce of\n                                                Inspector\n                                                 General\n\n\n\n\n                                           CONGRESSIONAL TESTIMONY,\n                                           REQUESTS, AND BRIEFINGS\n                                               During the reporting period, the OIG con-         vided a synopsis of the oversight efforts under-\n                                           tinued to keep the Congress fully and cur-            taken by the OIG during the past few years,\n                                           rently informed of the OIG\xe2\x80\x99s investigations,          speci\xef\xac\x81cally describing several of the signi\xef\xac\x81cant\n                                           audits, and other activities through testimony        investigative and audit reports issued by the\n                                           and related written follow-up, as well as nu-         OIG.\n                                           merous meetings and telephonic communica-\n                                           tions. These communications primarily con-                The IG then provided the Subcommittee\n                                           cerned the OIG\xe2\x80\x99s audit and investigative work         with information concerning the OIG\xe2\x80\x99s efforts\n                                           that has identi\xef\xac\x81ed waste or misuse of govern-         over the past three years to identify waste or\n                                           ment funds by the SEC, previous OIG investi-          misuse of government funds by the SEC. The\n                                           gations that impact investor protection, OIG          IG stated that the OIG has issued numerous\n                                           efforts to review various aspects of the SEC\xe2\x80\x99s        reports identifying waste and inef\xef\xac\x81ciencies, as\n                                           implementation of the Dodd-Frank Wall                 well as inadequate oversight on the part of\n                                           Street Reform and Consumer Protection Act             various SEC components. The IG reported\n                                           (Dodd-Frank Act), and ongoing OIG investi-            that a review of the OIG\xe2\x80\x99s audit and investiga-\n                                           gative work. The Inspector General\xe2\x80\x99s (IG) tes-        tive reports over the past three years revealed\n                                           timony and certain other requests and brief-          that the two largest areas in which the OIG\n                                           ings are discussed in detail below.                   has identi\xef\xac\x81ed signi\xef\xac\x81cant waste and inef\xef\xac\x81cien-\n                                                                                                 cies have been (1) procurement and contract-\n                                           INSPECTOR GENERAL TESTIMONY                           ing, and (2) costs relating to real property leas-\n                                           AND RELATED FOLLOW-UP                                 ing and of\xef\xac\x81ce moves.\n                                           ACTIVITIES\n                                                                                                     Speci\xef\xac\x81cally, the IG noted that, in the pro-\n                                               The IG testi\xef\xac\x81ed before the Subcommittee\n                                                                                                 curement and contracting area, the OIG has\n                                           on Financial Services and General Govern-\n                                                                                                 identi\xef\xac\x81ed numerous de\xef\xac\x81ciencies in the man-\n                                           ment of the U.S. House of Representatives\n                                                                                                 agement and oversight of SEC contracts, a\n                                           Committee on Appropriations on February\n                                                                                                 lack of written internal policies and proce-\n                                           10, 2011, regarding the Fiscal Year (FY) 2012\n                                                                                                 dures for administering contracts and other\n                                           SEC budget. In his testimony, the IG pro-\n                                                                                                 agreements, a failure to maintain adequate\n\n\n                                                                                            5\n\n\x0crecords and data regarding contracts and                   The IG then stated that, in certain in-\nagreements, and improprieties in the selection         stances, it has been and will be necessary for\nof vendors and the awarding of contracts.              the SEC to incur additional expenses to im-\nThe IG observed that these failures have led           plement the OIG\xe2\x80\x99s recommendations. He\nto the cancellation of contracts and the ex-           mentioned by way of example the numerous\npenditure of funds to reprocure required serv-         recommendations made in the OIG\xe2\x80\x99s report\nices.                                                  of investigation related to the Bernard Madoff\n                                                       Ponzi scheme that were designed to reform\n    The IG further reported that numerous              the SEC\xe2\x80\x99s system for handling tips and com-\nOIG investigations, audits, and reviews have           plaints. He reported that the SEC has im-\nrevealed signi\xef\xac\x81cant excessive costs and inef\xef\xac\x81-         plemented these recommendations, instituting\nciencies in connection with the SEC\xe2\x80\x99s leasing          a new Tips, Complaints, and Referrals (TCR)\nof real property and the relocation of staff           system to ensure that complaints are received\nof\xef\xac\x81ces. The IG stated that the OIG had                 and acted upon in a timely and appropriate\nfound numerous situations in which the SEC             manner at a total cost of approximately $21\nmade excessive payments that could have                million. The IG noted that additional fund-\nbeen avoided if appropriate policies and pro-          ing will be required to ensure that the SEC\ncedures had existed and been followed. The             has suf\xef\xac\x81cient resources to implement many of\nIG also described the OIG\xe2\x80\x99s \xef\xac\x81nding that SEC            the recommendations that have arisen, and\nmanagement approved a project to recon\xef\xac\x81g-              will arise, out of the OIG\xe2\x80\x99s audits, reviews,\nure internal of\xef\xac\x81ce staff space at a signi\xef\xac\x81cant         and investigations.\nmonetary cost without performing any cost-\nbene\xef\xac\x81t analysis of the project prior to its un-            Further, the IG reported in his testimony\ndertaking. The IG then noted that an OIG               that senior of\xef\xac\x81cials, particularly those within\nsurvey to the SEC staff affected by the of\xef\xac\x81ce          the SEC\xe2\x80\x99s Of\xef\xac\x81ce of Information Technology,\nmoves revealed that they had been satis\xef\xac\x81ed             had informed the OIG that they are analyzing\nwith their workplace locations prior to the            the SEC\xe2\x80\x99s operations and functions to identify\nproject and generally felt the project was a           ef\xef\xac\x81ciencies and areas in which costs can be\nwaste of time and money.                               reduced. The IG speci\xef\xac\x81cally mentioned the\n                                                       plans of the SEC\xe2\x80\x99s new Chief Information\n    In his testimony, the IG also discussed the        Of\xef\xac\x81cer to cancel a $2 million information\nOIG\xe2\x80\x99s efforts to ensure that its recommenda-           technology contract that he found was not\ntions are fully implemented, the funding nec-          cost-effective. The IG noted that the OIG\nessary to implement the OIG\xe2\x80\x99s recommenda-              supported and applauded these efforts and\ntions, and the identi\xef\xac\x81cation of ef\xef\xac\x81ciencies            will continue to encourage this type of ap-\nwithin SEC operations and functions. In par-           proach in the future.\nticular, the IG noted that where the OIG has\nidenti\xef\xac\x81ed wasteful expenditures and inef\xef\xac\x81-                 In concluding his testimony, the IG ac-\nciencies, the OIG has provided SEC man-                knowledged the importance of the SEC\xe2\x80\x99s mis-\nagement with detailed descriptions of its \xef\xac\x81nd-         sion of protecting investors, maintaining fair,\nings, as well as concrete and speci\xef\xac\x81c recom-           orderly, and ef\xef\xac\x81cient markets, and facilitating\nmendations to alleviate the problems and con-          capital formation, particularly as the nation\xe2\x80\x99s\ncerns identi\xef\xac\x81ed. The IG reported that the              securities exchanges mature into global for-\nOIG has followed up to ensure that these rec-          pro\xef\xac\x81t competitors. The IG also pointed out\nommendations have been agreed to and fully             the SEC\xe2\x80\x99s responsibility to utilize government\nimplemented, and that the majority of the              funds in an ef\xef\xac\x81cient and effective manner and\nOIG\xe2\x80\x99s recommendations had been imple-                  represented that the OIG intends to remain\nmented.                                                vigilant to ensure that scarce government re-\n\n\n                                                  6\n\n\x0csources are used wisely and cost-effectively             part, on its status as a Troubled Asset Relief\nand instances of waste and abuse are elimi-              Program (TARP) participant, but that the\nnated. The full text of the IG\xe2\x80\x99s written testi-          OIG did not speci\xef\xac\x81cally investigate other in-\nmony is contained in Appendix B to this re-              stances where the SEC may have treated\nport and can also be found at                            TARP and non-TARP recipients differently.\nhttp://www.sec-oig.gov/Testimony/index.ht                In addition, the IG stated that while the OIG\nml.                                                      did not determine that the SEC was inappro-\n                                                         priately lenient toward Bank of America, the\n     Subsequent to the IG\xe2\x80\x99s February 10, 2011            OIG noted the departure from SEC practice\ntestimony, the IG received several questions             and the inconsistent manner in which the\nfor the record in connection with the Finan-             SEC had acted. Further, the IG advised that,\ncial Services and General Government Sub-                while the OIG did not conclude that the SEC\ncommittee\xe2\x80\x99s FY 2012 Budget Hearing with                  was looking out for Bank of America over the\nthe SEC IG. These questions were received                interests of retail investors, the OIG\xe2\x80\x99s report\nfrom the Subcommittee Chairwoman, the                    did \xef\xac\x81nd that the waiver in question allowed\nHonorable Jo Ann Emerson (R-Missouri), the               Bank of America to issue registration state-\nHonorable Barbara Lee (D-California), and                ments without SEC review, which could po-\nthe Honorable Jo Bonner (R-Alabama). The                 tentially have some impact on retail investors.\ntopics of these questions included the OIG\xe2\x80\x99s\ninvestigation into the circumstances surround-                In response to Representative Lee\xe2\x80\x99s ques-\ning the SEC\xe2\x80\x99s proposed settlement with Bank              tions regarding the impact of the continuing\nof America that was completed during the                 resolution on the SEC, the IG noted that sig-\nprevious semiannual reporting period, the                ni\xef\xac\x81cant cuts in the SEC\xe2\x80\x99s budget may nega-\nimpact of the continuing resolution on the               tively impact the SEC\xe2\x80\x99s ability to effectively\nSEC, the diversity of the OIG\xe2\x80\x99s staff, the               implement OIG recommendations and new\nOIG\xe2\x80\x99s recruiting and hiring practices, the               responsibilities under the Dodd-Frank Act.\nOIG\xe2\x80\x99s procurement and contracting with                   The IG also pointed out that, in certain in-\nsmall and disadvantaged business enterprises,            stances, the SEC will have to incur additional\nenforcement of acquisition procedures appli-             expenses to implement improvements neces-\ncable to small and disadvantaged business en-            sary for the SEC to continue to perform its\nterprises, and investor protections related to           critical functions. The IG added that the\nRobert Allen Stanford\xe2\x80\x99s alleged Ponzi scheme.            SEC must remain vigilant in its mission of\n                                                         protecting investors and conduct aggressive\n     The IG provided responses to the ques-              oversight, and that it must have the resources\ntions for the record on March 18, 2011. In               necessary to conduct such oversight, as well as\nthose responses, the IG answered Chair-                  access to up-to-date technology. The IG fur-\nwoman Emerson\xe2\x80\x99s questions pertaining to the              ther observed that budget cuts of 13 percent\nOIG\xe2\x80\x99s Bank of America investigation, noting              or more might make it dif\xef\xac\x81cult for the SEC to\nthat our investigation found that the Commis-            accomplish its mission.\nsion initially approved a waiver of certain\nquali\xef\xac\x81cations for Bank of America in connec-                 The IG also responded to Representative\ntion with the SEC\xe2\x80\x99s \xef\xac\x81rst proposed settlement             Lee\xe2\x80\x99s questions pertaining to the diversity of\nof its action against Bank of America, not-              the OIG, its recruitment and hiring practices,\nwithstanding the fact that the traditional crite-        and its procurement and contracting prac-\nria for determining eligibility for such waivers         tices. Speci\xef\xac\x81cally, the IG provided informa-\nwere not met. The IG also pointed out that               tion showing that as of February 10, 2011, of\nthe OIG had found that the SEC\xe2\x80\x99s Division of             the OIG\xe2\x80\x99s 17 full-time employees, nine were\nCorporation Finance had recommended the                  women (53 percent) and eight were minorities\nwaiver for Bank of America based, at least in            (47 percent). With respect to the OIG\xe2\x80\x99s con-\n\n                                                    7\n\n\x0ctracts, the IG reported that 33 and 40 percent          OIG has conducted involving the Fort Worth\nof the OIG\xe2\x80\x99s outside contracts were with                Of\xef\xac\x81ce other than the Stanford investigation.\nsmall, disadvantaged businesses that were fe-\nmale- or minority-owned in 2009 and 2010,                    In addition to responding to the questions\nrespectively.                                           for the record, the OIG conducted follow-up\n                                                        work requested by the Honorable Jos\xc3\xa9 Ser-\n    In response to Representative Lee\xe2\x80\x99s ques-           rano (D-New York), Ranking Member of the\ntion about how the OIG ensures that the SEC             Financial Services and General Government\nmeets all acquisition procedures applicable to          Subcommittee, pertaining to the SEC\xe2\x80\x99s in-\nsmall and disadvantaged business enterprises,           volvement in U.S. territories and republics.\nparticularly female- and minority-owned                 On March 17, 2011, the IG forwarded to\n\xef\xac\x81rms, the IG noted that the OIG had recently            Ranking Member Serrano the OIG\xe2\x80\x99s report\nconducted two audits of the SEC\xe2\x80\x99s acquisition           of its review of Commission activities in U.S.\nprocedures. The IG described the pertinent              territories and republics. The OIG\xe2\x80\x99s report\nwork performed in both of these audits, which           set forth the results of the OIG\xe2\x80\x99s research re-\nincluded (1) an audit completed in September            garding the SEC\xe2\x80\x99s involvement in U.S. territo-\n2009 of all aspects of the SEC\xe2\x80\x99s procurement            ries and republics, noting that three SEC of-\nand contract management processes and func-             \xef\xac\x81ces or divisions, the Of\xef\xac\x81ce of Compliance\ntions, and (2) a follow-up review scrutinizing          Inspections and Examinations (OCIE), the\ncertain time-and-materials and labor-hour               Of\xef\xac\x81ce of Investor Education and Advocacy\ncontracts, including one contract with a Small          (OIEA), and the Division of Enforcement\nBusiness Administration-certi\xef\xac\x81ed small and              (Enforcement), have contacts with investors in\ndisadvantaged business, to ensure compliance            U.S. territories. The OIG\xe2\x80\x99s report also noted\nwith applicable requirements.                           that the SEC\xe2\x80\x99s Miami Regional Of\xef\xac\x81ce has\n                                                        speci\xef\xac\x81c responsibility for the U.S. Virgin Is-\n     Further, the IG provided answers to sev-           lands and Puerto Rico, while the Los Angeles\neral questions from Representative Bonner               Regional Of\xef\xac\x81ce is responsible for Guam, and\nthat related to investor protection and, in par-        the SEC headquarters of\xef\xac\x81ce assumes primary\nticular, Robert Allen Stanford\xe2\x80\x99s alleged Ponzi          responsibility for all other U.S. territories and\nscheme. The IG pointed out that in the                  republics.\nOIG\xe2\x80\x99s report of investigation in the Stanford\nmatter, the OIG found that the SEC\xe2\x80\x99s Fort                    Speci\xef\xac\x81cally with respect to OCIE, the\nWorth Enforcement program made no mean-                 OIG\xe2\x80\x99s report found that OCIE administers\ningful effort to obtain evidence relating to            the SEC\xe2\x80\x99s nationwide examination and in-\nStanford\xe2\x80\x99s alleged Ponzi scheme. The IG                 spection program for registered self-regulatory\nadded that the OIG\xe2\x80\x99s investigation found that           organizations, broker-dealers, transfer agents,\nthe Fort Worth Enforcement program\xe2\x80\x99s deci-              clearing agencies, investment companies, and\nsion not to undertake a full and thorough in-           investment advisers, and conducts examina-\nvestigation of Stanford was due, at least in            tions of investment advisers, broker-dealers,\npart, to the perception that the Stanford case          and transfer agents in U.S. territories.\xc2\xa0 The\nwas dif\xef\xac\x81cult and novel, and not the type of             report also noted that OCIE reviews and re-\ncase favored by the SEC. The IG noted that              sponds to investor complaints and has \xef\xac\x81elded\nthe OIG recommended that the SEC clarify                complaints from investors located in U.S. ter-\nits procedures to ensure that the Enforcement           ritories and from investors outside the territo-\nprogram makes better decisions in the future            ries with respect to subjects located in the ter-\nand that the SEC consider the signi\xef\xac\x81cance of            ritories. The OIG then provided detailed sta-\nbringing cases that are dif\xef\xac\x81cult, but important         tistics concerning the number of registrants\nfor the protection of investors. The IG also            and number of examinations OCIE has con-\nprovided information on investigations the              ducted in U.S. territories and republics during\n\n                                                   8\n\n\x0cthe past \xef\xac\x81ve years. Additionally, the OIG re-            against a Florida resident and company for\nport provided detailed information concern-              operating a multi-million dollar fraudulent\ning a joint broker-dealer/investment adviser             pyramid scheme involving investors from\nexamination conducted by OCIE of a \xef\xac\x81rm                   Puerto Rico.\nlocated in Puerto Rico that revealed numer-\nous concerns and de\xef\xac\x81ciencies in the \xef\xac\x81rm\xe2\x80\x99s                     In conclusion, the OIG\xe2\x80\x99s report found that\npractices and compliance controls.                       while the SEC does not maintain a presence\n                                                         (as in a physical of\xef\xac\x81ce) in any U.S. territory or\n     The OIG\xe2\x80\x99s report next provided detailed             republic, it does respond to complaints from\ninformation concerning OIEA\xe2\x80\x99s contacts with              investors in the territories, conducts examina-\ninvestors located in U.S. territories, showing           tions in the territories, and has \xef\xac\x81led enforce-\nover 250 contacts coming from Puerto Rico                ment actions involving conduct in or related\nalone. The report noted that OIEA con-                   to U.S. territories. The OIG\xe2\x80\x99s report also\n\xef\xac\x81rmed that it had responded appropriately to             noted that some U.S. territories are assigned\nall contacts from the territories, forwarding            to speci\xef\xac\x81c regional of\xef\xac\x81ces, but many of the\nmany of them to Enforcement. The OIG                     territories and all of the republics are not cur-\nthen provided several examples of the types of           rently assigned to any regional of\xef\xac\x81ce. Based\nfollow-up work OIEA has completed with re-               on its review, the OIG suggested that the SEC\nspect to contacts from U.S. territories.                 reinforce the roles and responsibilities of\n                                                         headquarters and the regional of\xef\xac\x81ces regard-\n     The OIG\xe2\x80\x99s report also described En-                 ing investor protection in U.S. territories and\nforcement\xe2\x80\x99s involvement with U.S. territories,           republics. The OIG further suggested that\nnoting that Enforcement stated that it obtains           OIEA consider performing investor outreach\nevidence of possible violations of the federal           and education in U.S. territories and republics\nsecurities laws from many sources, including             to ensure investors located there have the\ninvestor tips from U.S. territories and repub-           knowledge and opportunity to have their con-\nlics. The report pointed out that while En-              cerns addressed by the SEC.\nforcement regularly conducts investigations\ninto allegations concerning entities and indi-           OTHER REQUESTS AND BRIEFINGS\nviduals located in U.S. territories, and certain\nmatters have involved signi\xef\xac\x81cant numbers of                  During the reporting period, the IG con-\ninvestors in U.S. territories, a search of public        ducted numerous brie\xef\xac\x81ngs of, and had discus-\nEnforcement Litigation Releases revealed only            sions with, Members of Congress and Con-\nmatters related to Puerto Rico. The OIG\xe2\x80\x99s                gressional staff concerning a wide variety of\nreport also noted that effective March 14,               issues impacting the SEC and the broader \xef\xac\x81-\n2011, Enforcement deployed its new TCR                   nancial system, including the implementation\nIntake and Resolution system to capture and              and impact of numerous provisions of the\ntrack investor complaints, and simultaneously            Dodd-Frank Act. Speci\xef\xac\x81cally, on October 21,\nlaunched a TCR website. During the OIG\xe2\x80\x99s                 2010, the IG participated in a call with staff\nreview, Enforcement reported that, since                 of the U.S. Senate and House of Representa-\n2004, it had received six, 18, and two TCRs              tives Committees on Appropriations concern-\nfrom individuals located in Guam, Puerto                 ing the SEC\xe2\x80\x99s budget and the OIG\xe2\x80\x99s budget,\nRico, and the U.S. Virgin Islands, respectively,         and whether the OIG had suf\xef\xac\x81cient funds to\nand ten and \xef\xac\x81ve TCRs where the subject was               perform its critical oversight functions. On\nlocated in Puerto Rico and the U.S. Virgin               February 17, 2011, the IG met with staff of\nIslands, respectively. The OIG\xe2\x80\x99s report also             the U.S. House of Representatives Committee\nprovided an example of an enforcement ac-                on Transportation and Infrastructure and its\ntion involving conduct in a U.S. territory in            Subcommittee on Economic Development,\nAugust 2009, which sought a civil injunction             Public Buildings, and Emergency Manage-\n\n                                                    9\n\n\x0cment, and provided a brie\xef\xac\x81ng on the status           IG\xe2\x80\x99s views on the main challenges facing the\nand progress of the OIG\xe2\x80\x99s ongoing investiga-         SEC.\ntion into the SEC\xe2\x80\x99s leasing practices and ac-\ntivities, including a contract to lease space at         Further, shortly after the OIG com-\nConstitution Center in Washington, D.C.              menced its investigation into the facts and cir-\nThe IG also briefed the Committee staff on           cumstances of the former SEC General\nthe OIG\xe2\x80\x99s previous audit of the SEC\xe2\x80\x99s real           Counsel\xe2\x80\x99s participation in matters pertaining\nestate leasing function, as well as other OIG        to the Bernard Madoff Ponzi scheme, on\naudit and investigative work pertaining to           March 15, 2011, the IG, Counsel to the IG,\nprocurement issues and identi\xef\xac\x81ed areas of            and Assistant Inspector General for Investiga-\nwaste within the SEC.                                tions (AIGI) met with the Honorable Darrell\n                                                     Issa (R-California), Chairman of the U.S.\n    In addition, on February 24, 2011, the IG        House of Representatives Committee on\nmet with several staff of the U.S. House of          Government Oversight and Reform, regard-\nRepresentatives Committee on Financial               ing the Committee\xe2\x80\x99s ongoing efforts with re-\nServices pertaining to the SEC\xe2\x80\x99s implementa-         gard to this matter. The IG, Counsel, and\ntion of the Dodd-Frank Act, the OIG\xe2\x80\x99s prior          AIGI also met with several majority staff from\nreport of investigation related to the Robert        the Government Oversight and Reform\nAllen Stanford alleged Ponzi scheme, and pos-        Committee and its Subcommittee on Over-\nsible future OIG audit work pertaining to the        sight and Investigations, and the Subcommit-\nSEC\xe2\x80\x99s economic analysis function and col-            tee on Oversight and Investigations of the\nlaboration with other agencies, as well as           U.S. House of Representatives Committee on\nother issues of interest to the Committee. On        Financial Services, as well as several other\nMarch 3, 2011, the IG briefed staff of the           Congressional staff. During this meeting, the\nSubcommittee on Oversight and Investiga-             IG briefed the staff on the allegations that\ntions of the U.S. House of Representatives           formed the basis of the investigation the IG\nCommittee on Government Oversight and                was undertaking into these matters. On\nReform regarding a wide variety of issues per-       March 17, 2011, the IG participated in a con-\ntaining to \xef\xac\x81nancial management, work force,          ference call, which included minority staff\nand operations at the SEC, including the re-         from the oversight committees, and provided\nsults of the OIG\xe2\x80\x99s oversight efforts and the         a similar brie\xef\xac\x81ng to the one conducted on\n                                                     March 15, 2011.\n\n\n\n\n                                                   10\n\n\x0cU.S. Securities and Exchange Commission\n\n                                                                      SEMIANNUAL\n                                                                      REPORT TO\n                                                 Of\xef\xac\x81ce of\n                                                Inspector\n                                                 General\n                                                                      CONGRESS\n                                           ADVICE AND ASSISTANCE PROVIDED\n                                           TO THE AGENCY AND THE\n                                           GOVERNMENT ACCOUNTABILITY\n                                           OFFICE\n                                               During this semiannual reporting period,       based upon information obtained during the\n                                           the OIG provided advice and assistance to          course of OIG investigations and audits.\n                                           SEC management on various issues that were\n                                           brought to the OIG\xe2\x80\x99s attention during the              In addition, OIG investigative staff pro-\n                                           course of audits and investigations conducted      vided assistance to agency management in\n                                           by the Of\xef\xac\x81ce and otherwise. This advice was        connection with an inquiry performed into the\n                                           conveyed through written communications, as        alleged misappropriation of funds from the\n                                           well as in meetings and conversations with         SEC Recreation and Welfare Association\n                                           agency of\xef\xac\x81cials. The advice included com-          (SRWA), which is a non-appropriated funding\n                                           ments on draft policies and procedures and         instrumentality. As is described more fully in\n                                           suggestions for improvements in existing poli-     the Inquiries Conducted Section of this Re-\n                                           cies and procedures. The OIG also collabo-         port, the OIG\xe2\x80\x99s inquiry discovered that there\n                                           rated with and provided assistance to the Gov-     was a lack of controls over the SRWA and, in\n                                           ernment Accountability Of\xef\xac\x81ce (GAO) on mat-         particular, that a former employee was the\n                                           ters of mutual interest to the GAO and the         only signatory on the SRWA\xe2\x80\x99s checking ac-\n                                           OIG.                                               count and still maintained the checkbook for\n                                                                                              the account. In an effort to assist SEC man-\n                                               Speci\xef\xac\x81cally, during the reporting period,      agement, the OIG obtained possession of the\n                                           the IG met with consultants performing an          checkbook and arranged for a current SEC\n                                           organizational study of the agency that was        of\xef\xac\x81cial to become the signatory on the ac-\n                                           required by Section 967 of the Dodd-Frank          count. The OIG also made several recom-\n                                           Wall Street Reform and Consumer Protection         mendations to management in order to en-\n                                           Act. The IG also met with a Division of En-        hance oversight of the SRWA\xe2\x80\x99s operations, in-\n                                           forcement representative regarding the SEC\xe2\x80\x99s       cluding that a \xef\xac\x81nancial control system be de-\n                                           whistleblower program and provided insights        veloped and implemented for the SRWA.\n                                           as to how that program should be redesigned\n\n\n                                                                                            11\n\n\x0c     Further, as discussed in the OIG SEC           24-05.01.02.02 (02.0), \xe2\x80\x9cLAN and Telephone\nEmployee Suggestion Hotline Section of this         Account Creation, Modi\xef\xac\x81cation, Termination\nReport, the OIG reviewed a suggestion re-           and Transfer,\xe2\x80\x9d and the accompanying form,\nceived from an SEC employee concerning the          \xe2\x80\x9cRequest for Account Creation, Modi\xef\xac\x81cation,\nneed for improvement in the timeliness of no-       Termination or Transfer.\xe2\x80\x9d Overall, the OIG\nti\xef\xac\x81cations to employees of changes in the           suggested that the draft Operating Procedure\nSEC\xe2\x80\x99s operating status. The OIG\xe2\x80\x99s review of         be revised to ensure that it clearly speci\xef\xac\x81ed the\nthis suggestion disclosed that the SEC\xe2\x80\x99s noti\xef\xac\x81-     time deadlines for the completion of each of\ncation of operating status updates during           the assigned duties outlined in the policy to\nearly 2011 occurred several hours after the         ensure that the accounts of users who have\nU.S. Of\xef\xac\x81ce of Personnel Management (OPM)            left the SEC are timely disabled and deleted.\nhad updated Federal agency operating status         The OIG also made numerous detailed com-\nfor the Washington, D.C. metropolitan area          ments concerning the clari\xef\xac\x81cation of and\ndue to inclement weather. The OIG\xe2\x80\x99s review          consistency in terms used in the policy, the\nalso determined that the SEC\xe2\x80\x99s Contingency          assignment of particular tasks to speci\xef\xac\x81c indi-\nPlan for Early Dismissal and Closure Days,          viduals or positions, and the speci\xef\xac\x81cation of\nSEC Regulation (SECR) 5-15 had not been             time deadlines for the performance of speci\xef\xac\x81c\nupdated since March 1998, and that the              tasks.\nemergency noti\xef\xac\x81cation system currently being\nused by the SEC, the N\xc5\x8dti\xef\xac\x81nd system, could               The OIG also reviewed and provided\nbe used more effectively and consistently to        comments on draft Implementing Instruction\nprovide SEC employees with timely informa-          24-04.02.01 (01.1), \xe2\x80\x9cSensitive Data Protec-\ntion about operating status changes. The            tion.\xe2\x80\x9d Through its comments, the OIG\nOIG issued a memorandum to the SEC\xe2\x80\x99s Ex-            sought to ensure that the draft Implementing\necutive Director on March 18, 2011, recom-          Instruction fully satis\xef\xac\x81ed recommendations\nmending that the Of\xef\xac\x81ce of the Executive Di-         previously made in OIG Report No. 485, As-\nrector (OED) revise and update SECR 5-15            sessment of the SEC\xe2\x80\x99s Privacy Program, issued on\nand post the revised policy to the SEC\xe2\x80\x99s intra-     September 29, 2010, that the Chief Operat-\nnet site. The OIG\xe2\x80\x99s memorandum also rec-            ing Of\xef\xac\x81cer implement a policy that all port-\nommended that the OED review and revise             able media must be fully secured when not in\nits current processes to ensure noti\xef\xac\x81cations of     use, and that OIT \xef\xac\x81nalize, approve, and im-\noperating status changes sent by the SEC are        plement its operating procedures for \xe2\x80\x9cHard\nprovided in a timely manner. The OIG fur-           Drive Wiping and Media Destruction.\xe2\x80\x9d The\nther suggested that the SEC consider improv-        OIG further suggested that the Implementing\ning the current functionality of the N\xc5\x8dti\xef\xac\x81nd        Instruction make clear that sensitive informa-\nsystem, surveying SEC staff to determine            tion should not be left unattended at any un-\ntheir preferences as to the delivery method for     secured locations, specify what consequences\nand frequency of weather-related closure and        will follow if an employee or contractor fails\ndelay information, and reminding employees          to comply with the clean desk policy, and de-\nof their option to designate their preferred        scribe the responsibilities of individual em-\ncommunication method through N\xc5\x8dti\xef\xac\x81nd.               ployees, contractors, and other users of SEC\n                                                    computing services, including the responsibil-\n    In addition, during the reporting period,       ity for appropriately protecting, securing, and\nthe OIG reviewed and submitted comments             disposing of sensitive information in accor-\non numerous drafts of Of\xef\xac\x81ce of Information          dance with the Implementing Instruction.\nTechnology (OIT) policies and procedures.           The \xef\xac\x81nal Implementing Instruction was is-\nFor example, the OIG provided extensive             sued on February 16, 2011, and incorporated\ncomments on draft Operating Procedure               some of the OIG\xe2\x80\x99s suggestions.\n\n\n                                                  12\n\n\x0c    Similarly, the OIG provided numerous                        The OIG reviewed and provided com-\nsuggestions and comments on draft Imple-                   ments on a draft of an updated version of the\nmenting Instruction 24-04.04.05 (02.0), \xe2\x80\x9cIn-               SEC OIT \xe2\x80\x9cRules of the Road,\xe2\x80\x9d SECR\nformation Encryption within the SEC.\xe2\x80\x9d In                   24-04.A01 (version 7.0), which are intended to\nparticular, the OIG made several suggestions               ensure that agency computing and network\ndesigned to ensure that the Implementing In-               resources are used responsibly, safely, and ef\xef\xac\x81-\nstruction clearly set forth the policies and pro-          ciently, thereby maximizing the availability of\ncedures for determining whether all data                   these resources. In its comments, the OIG\nplaced on portable media must be encrypted                 suggested that the portion of the Rules of the\nin SEC divisions and of\xef\xac\x81ces and how users                  Road discussing the use of social networking\nwill be noti\xef\xac\x81ed of these determinations. The               be clari\xef\xac\x81ed to re\xef\xac\x82ect whether the use of social\nOIG\xe2\x80\x99s comments and suggestions were incor-                 networking sites from Commission computers\nporated into the \xef\xac\x81nal implementing instruc-                is allowed or prohibited and, if allowed, what\ntion, \xe2\x80\x9cEncrypting Data on Portable Media,\xe2\x80\x9d                 limitations are placed on the use of such sites.\nwhich was issued on December 1, 2010.                      The OIG also suggested clari\xef\xac\x81cations to the\n                                                           portion of the Rules of the Road pertaining\n    Further, the OIG reviewed and provided                 to the use of e-mail encryption when sending\ncomments on draft SECR 24-02 (02.0), \xe2\x80\x9cIn-                  nonpublic or sensitive data to non-SEC re-\nformation Technology Capital Planning and                  cipients. OIT incorporated the OIG\xe2\x80\x99s com-\nInvestment Control.\xe2\x80\x9d Speci\xef\xac\x81cally, the OIG                  ments into the updated version of the Rules of\nsuggested that the draft policy should be re-              the Road (version 7.0), which was issued on\nvised to create an enforcement mechanism to                March 16, 2011.\naddress noncompliance with the Capital\nPlanning and Investment Control (CPIC)                         The OIG also reviewed and commented\nprocess, as the OIG had previously recom-                  on draft SECR 24-10 (01.0), \xe2\x80\x9cElectronic and\nmended in Report No. 466, Assessment of the                Information Technology (EIT) Section 508/\nSEC Information Technology Investment Process, is-         Accessibility Program.\xe2\x80\x9d The OIG made sev-\nsued on March 26, 2010. The OIG also sug-                  eral suggestions for clari\xef\xac\x81cation of the draft\ngested that the draft policy be revised to spec-           regulation, particularly with respect to the\nify what procedures should be followed when                identity of \xe2\x80\x9cSEC business sponsors\xe2\x80\x9d and\nviolations or circumventions of the CPIC                   speci\xef\xac\x81cation of the \xe2\x80\x9cnecessary technical stan-\nprocess are brought to the attention of the                dards.\xe2\x80\x9d The OIG subsequently reviewed a\nappropriate CPIC governance board, and to                  second draft of the regulation that incorpo-\nprovide for the prompt reporting of inten-                 rated the OIG\xe2\x80\x99s prior comments. The OIG\ntional violations to the OIG. The OIG fur-                 made a few additional suggestions for reor-\nther suggested that the policy specify a process           ganizing and revising the second draft of the\nand criteria to be followed pertaining to the              policy.\ngranting of exceptions or deviations from the\npolicy, and include a requirement to maintain                  In addition to providing advice and assis-\nand track all waivers granted. The OIG\xe2\x80\x99s                   tance to agency management during the re-\ncomments and suggestions were incorporated                 porting period, the OIG coordinated with and\ninto the \xef\xac\x81nal regulation, which was issued on              provided assistance to the GAO in connection\nMarch 11, 2011. Additionally, the OIG pro-                 with a variety of matters. For example, the\nvided comments on and suggested several im-                OIG continued to provide assistance to the\nprovements to a draft \xe2\x80\x9cHigh-Level Acquisition              GAO regarding its ongoing engagement in-\nPlan,\xe2\x80\x9d Operating Procedure                                 volving the \xe2\x80\x9crevolving door\xe2\x80\x9d at the SEC (i.e.,\n24-02.01.01.02.T02 (version 2.0).                          SEC staff leaving the agency and then work-\n                                                           ing for or representing \xef\xac\x81rms regulated by the\n                                                           SEC). Speci\xef\xac\x81cally, the IG met with GAO\n\n                                                     13\n\n\x0crepresentatives and provided responses to         volving door issues and to facilitate coordina-\nnumerous questions they posed with respect to     tion between the GAO and the OIG in this\nthe OIG\xe2\x80\x99s \xef\xac\x81ndings based upon audit and in-        area. In addition, the IG participated in a\nvestigative work performed in the revolving       conference call with GAO staff in connection\ndoor area, the OIG\xe2\x80\x99s views on the potential       with a study the GAO is conducting on the\neffectiveness of various possible remedial        regulation and oversight of \xef\xac\x81nancial planners.\nmeasures, actions taken by the agency in re-      In that call, the IG provided GAO staff with\nsponse to speci\xef\xac\x81c OIG recommendations, and        his insights gained through the OIG\xe2\x80\x99s previ-\nthe status of pertinent new or ongoing OIG        ous reviews of the SEC\xe2\x80\x99s ability to track ex-\ninvestigations. The IG also participated in a     amination \xef\xac\x81ndings, as well as tips and com-\nconference call with GAO staff to discuss re-     plaints provided by the public.\n\n\n\n\n                                                14\n\n\x0cU.S. Securities and Exchange Commission\n\n                                                                        SEMIANNUAL\n                                                                        REPORT TO\n                                                 Of\xef\xac\x81ce of\n                                                Inspector\n                                                 General\n                                                                        CONGRESS\n                                           OIG SEC EMPLOYEE\n                                           SUGGESTION HOTLINE\n                                               The OIG SEC Employee Suggestion                         (3)\t   Any recommendations made\n\n                                           Hotline program was established pursuant to                        or actions taken by the IG in \n\n                                           Section 966 of the Dodd-Frank Wall Street                          response to substantiated al-\n                                           Reform and Consumer Protection Act. Dur-                           legations received.\n\n                                           ing the reporting period, the OIG prepared\n                                           and issued policies and procedures imple-                   (4)\t   Any action the Commission \n\n                                           menting the employee suggestion hotline pro-                       has taken in response to sug-\n                                           gram. These policies and procedures address                        gestions or allegations re-\n                                           both the receipt and handling of employee                          ceived. \n\n                                           suggestions, and the non-monetary recogni-\n                                           tion for employees whose suggestions or dis-                 During this six-month reporting period,\n                                           closures to the OIG may result or have re-               OIG received 17 suggestions and eight allega-\n                                           sulted in cost savings to or ef\xef\xac\x81ciencies for the         tions, for a total of 25 employee hotline con-\n                                           Commission.                                              tacts. The OIG analyzed all of the 25 em-\n                                                                                                    ployee suggestions and allegations received\n                                              Section 966 requires the IG to submit an              during this six-month period. The informa-\n                                           annual report to the Congress describing:                tion required to be reported to Congress is set\n                                                                                                    forth below for the six-month period ending\n                                              (1)\t   The nature, number, and po-                    March 31, 2011:\n                                                     tential bene\xef\xac\x81ts of any sugges-\n                                                     tions received.                                    In addition, summarized below are several\n                                                                                                    of the suggestions and allegations received\n                                              (2)\t   The nature, number, and se-                    and analyzed during the reporting period.\n                                                     riousness of any allegations \n\n                                                     received. \n\n\n\n\n\n                                                                                              15\n\n\x0c                           Nature and Potential Bene\xef\xac\x81ts of                                       Number\n                                    Suggestions*\n\n Increase effectiveness                                                                             9\n\n Increase the use of resources or decrease cost                                                     5\n\n Increase efficiency or productivity                                                                4\n\n                               Nature and Seriousness                                            Number\n                                   of Allegations\n\n Mismanagement and/or discrimination                                                                5\n\n Waste of Commission resources                                                                      4\n\n Physical harm to person or property                                                                1\n\n Misconduct by an employee                                                                          1\n\n                         Action Taken by OIG in Response to                                      Number\n                             Suggestions or Allegations\n\n Memorandum to, or communication with, agency requesting action be taken                            11\n\n Referred to OIG investigations unit                                                                2\n\n Referred to OIG audit unit                                                                         1\n\n OIG investigations unit opened preliminary inquiry                                                 1\n\n Researched issue, but no further agency action was deemed necessary\n                                                                                                    4\n\n        Action Taken by Agency in Response to Suggestions or Allegations                         Number\n                      Referred During the Reporting Period\n\n SEC management took specific                                                                       2\n action to address the suggestion\n\n The agency decided to secure new technology in response to the                                     1\n suggestion\n\n SEC management launched internal review                                                            1\n\n The suggestion is still under review by the agency                                                 3\n\n SEC management is considering suggestion in context of existing procedures                         3\n\n* Suggestions and/or allegations may fall into more than one category and, as such, the numbers listed may be\ngreater than the total number of suggestions and allegations received.\n\n\n\n\n                                                        16\n\x0cEXAMPLES OF SUGGESTIONS                                   to open new satellite of\xef\xac\x81ces, not the least of\nRECEIVED                                                  which would be \xef\xac\x81nancial impact, and that the\n                                                          SEC currently has several long-term leases in\nOffice Real Estate Leases                                 place that do not expire for many years.\n                                                          Management also recognized, however, that\n    An employee suggested that potential cost\n                                                          in situations where the SEC might have leas-\nsavings could be achieved if expansion needs\n                                                          ing \xef\xac\x82exibility, it would be appropriate to con-\nfor SEC of\xef\xac\x81ces were met in part by leasing\n                                                          sider satellite of\xef\xac\x81ces and other alternatives\nsatellite of\xef\xac\x81ces in suburbs of cities where the\n                                                          when a current lease nears the end of its\nSEC maintains of\xef\xac\x81ces, rather than by increas-\n                                                          term, or if management were to decide to re-\ning the space leased in business districts of\n                                                          vise business processes in ways that would\nthose cities. The suggestion stated that this\n                                                          clearly render the implementation cost-\napproach might save costs, reduce employee\n                                                          effective. We are awaiting more speci\xef\xac\x81c in-\nstress and commuting time, and provide an\n                                                          formation from management regarding the\nalternate worksite in the event of pandemic or\n                                                          SEC\xe2\x80\x99s consideration of satellite of\xef\xac\x81ces.\nterrorist events.\n                                                          SEC Website and EDGAR Database\n     We believe this suggestion has the poten-\ntial for cost savings to the SEC, as well as                  The OIG received an employee sugges-\nother bene\xef\xac\x81ts that are not easily measured in             tion that the SEC website and the Electronic,\nmonetary terms. In analyzing this suggestion,             Data Gathering, Analysis, and Retrieval\nOIG staff reviewed relevant statutes, Execu-              (EDGAR) system should be more easily acces-\ntive Orders, and guidance from the Comptrol-              sible and user-friendly. EDGAR is the feature\nler General, as well as OIG Report No. 484,               on the SEC\xe2\x80\x99s website that is most frequently\nReal Property Leasing Procurement Process, issued         used by the public and, therefore, implement-\non September 30, 2010. We also interviewed                ing this suggestion is likely to provide potential\nof\xef\xac\x81cials from several other governmental                  bene\xef\xac\x81ts by improving the agency\xe2\x80\x99s effective-\nagencies and self-regulatory bodies in the \xef\xac\x81-             ness. After reviewing the suggestion, OIG\nnancial industry. We recommended that the                 staff found that there are several ways in\nagency seriously consider this suggestion, not-           which the SEC\xe2\x80\x99s website could be enhanced,\ning that the establishment of one or more sat-            and made more user-friendly and aesthetically\nellite of\xef\xac\x81ces appears to comply with the fed-             pleasing. The OIG recommended to man-\neral government\xe2\x80\x99s efforts to reduce the costs,            agement that access to the EDGAR database\nstress, and pollution of commuting, and that              could be improved by displaying the search\nother agencies have successfully made exten-              link more prominently, and that EDGAR\nsive use of satellite of\xef\xac\x81ces. Finally, we pointed         search results might be more usable if com-\nout that the availability of an alternate work            monly sought or recent search results were\nsite or sites in the event of a major catastro-           displayed more prominently. Management\nphe is an attractive aspect of this employee\xe2\x80\x99s            responded to the OIG, indicating that they\nsuggestion.                                               agreed with the employee\xe2\x80\x99s suggestion and\n                                                          were taking steps to implement the recom-\n    Management provided an initial response               mended changes.\nto the suggestion, noting that the SEC is en-\ngaged in several ongoing reviews focused, at              Receipt of Electronic Documents\nleast in part, on some of the issues implicated\nin the employee suggestion. Management                       An employee suggested that the SEC\nfurther noted that there would be a number of             could bene\xef\xac\x81t from a better means for sending\nconsiderations to weigh in deciding whether               and receiving voluminous documents elec-\n\n\n\n                                                    17\n\n\x0ctronically. Speci\xef\xac\x81cally, the SEC\xe2\x80\x99s e-mail sys-       emergencies. Noti\xef\xac\x81cations are sent to em-\ntem has size limitations and is burdened when        ployees via telephone, e-mail and/or text mes-\nlarge documents are sent or received. It was         sage. Since the implementation of N\xc5\x8dti\xef\xac\x81nd in\nsuggested that providing a service whereby           March 2008, noti\xef\xac\x81cations were provided in-\nlarge \xef\xac\x81les could be uploaded and downloaded          consistently, i.e. through varying methods and\nwould be bene\xef\xac\x81cial and a good use of re-             at various times. The OIG suggested that the\nsources. We determined that this suggestion          functionality of N\xc5\x8dti\xef\xac\x81nd be reviewed and im-\ncould potentially improve ef\xef\xac\x81ciency and in-          provements made, as necessary. Although no\ncrease the use of resources and recommended          of\xef\xac\x81cial response from management has yet\nto the agency that it be considered.                 been received, we noted that immediate im-\n                                                     provements were made to the noti\xef\xac\x81cation sys-\n    The agency agreed with the underlying            tem. Speci\xef\xac\x81cally, an e-mail reminder and\npremise of the suggestion and, after conduct-        brochure regarding the N\xc5\x8dti\xef\xac\x81nd system were\ning an internal analysis, developed what it de-      provided to all employees and, when it was\ntermined to be a cost-effective and ef\xef\xac\x81cient         necessary to provide information to employees\napproach to resolve the concern expressed in         regarding a possible government shutdown,\nthe suggestion. The agency further agreed to         noti\xef\xac\x81cations to employees were signi\xef\xac\x81cantly\nraise staff awareness of the resources available     improved, as employees received noti\xef\xac\x81cation\nfor transmitting large documents and provide         through all available communication methods.\ntraining as necessary.\n                                                     Referral to Audit Unit\nNotification of Operating Status\n                                                         The OIG also received a suggestion that\n    The OIG received an employee sugges-             resulted in a referral to the OIG\xe2\x80\x99s audit unit.\ntion regarding the need for improvement in           This suggestion related to shared of\xef\xac\x81ces for\nthe timeliness of noti\xef\xac\x81cation of the SEC\xe2\x80\x99s op-       employees who telework and was referred to\nerating status to employees. The employee            the audit unit for inclusion in an ongoing\nexpressed concern that noti\xef\xac\x81cations from the         audit involving telework practices and policies\nSEC were sent signi\xef\xac\x81cantly later than those          at the SEC.\nprovided by the U.S. Of\xef\xac\x81ce of Personnel\nManagement (OPM) and, at times, after some\nemployees had already reported to work. An           EXAMPLES OF ALLEGATIONS\nOIG review of operating status updates for           RECEIVED\nthe Washington, D.C. metropolitan area pro-\nvided during January and February 2011               Inappropriate Involvement in\ncon\xef\xac\x81rmed that noti\xef\xac\x81cation was consistently           Employee\xe2\x80\x99s Time and Attendance\ndelayed by several hours. After this review of\nthe operating status updates and discussions             The OIG received an allegation that a\nwith various employees responsible for prepar-       non-supervisory employee interfered in work-\ning and disseminating closure or delay noti\xef\xac\x81-        ing relationships between employees and their\ncations, we determined that the timeliness and       supervisors, overruled senior of\xef\xac\x81cers\xe2\x80\x99 approv-\neffectiveness of noti\xef\xac\x81cations sent from the          als of time and attendance, created con\xef\xac\x82ict,\nSEC could be improved.                               and contributed to a lack of trust and declin-\n                                                     ing morale among staff. Because this allega-\n    The SEC utilizes N\xc5\x8dti\xef\xac\x81nd, an emergency           tion primarily raised concerns that would be\nnoti\xef\xac\x81cation system that provides information         appropriately addressed by management, the\nto employees in the event of inclement               details of the allegation were referred to the\nweather, of\xef\xac\x81ce closings, disasters, or other         appropriate management of\xef\xac\x81cials for immedi-\n                                                     ate action.\n\n\n                                                   18\n\n\x0c    Upon receipt of the allegation, manage-            Referrals to Investigations Unit\nment of\xef\xac\x81cials launched an internal review of\nthe facts and circumstances of the allegation.             The OIG received three allegations that\nManagement determined that it was neces-               resulted in referrals to the OIG\xe2\x80\x99s investiga-\nsary to retain an outside mediator to meet             tions unit. Two of these allegations related to\nwith the individuals involved and provide rec-         waste in leasing of of\xef\xac\x81ce space and were re-\nommendations to management on the best                 ferred to the investigations unit for inclusion\ncourse of action to address the situation. The         in an ongoing investigation of the SEC\xe2\x80\x99s leas-\nOIG was informed that these efforts had been           ing activities. The OIG\xe2\x80\x99s investigations unit\ncompleted and the mediator had provided                opened a preliminary inquiry concerning the\nseveral recommendations to management,                 third allegation regarding retaliation against a\nwhich was working with the Of\xef\xac\x81ce of Human              former staff member.\nResources (OHR) to fully implement those\nrecommendations.\n\n\n\n\n                                                 19\n\n\x0c20\n\x0cU.S. Securities and Exchange Commission\n\n                                                                       SEMIANNUAL\n                                                                       REPORT TO\n                                                 Of\xef\xac\x81ce of\n                                                Inspector\n                                                 General\n                                                                       CONGRESS\n                                           COORDINATION WITH OTHER OFFICES\n                                           OF INSPECTOR GENERAL\n                                                During this semiannual reporting period,           tional opportunities for members of the\n                                           the SEC OIG coordinated its activities in a             CIGIE community and to assist in ensuring\n                                           variety of ways with those of other OIGs, as            the development of competent personnel. The\n                                           is required by Section 4(a)(4) of the Inspector         IG or a senior OIG staff member attended the\n                                           General Act of 1978, as amended. Specifi-               Professional Development Committee\xe2\x80\x99s\n                                           cally, the SEC IG, or a senior OIG staff mem-           monthly meetings. The OIG also participated\n                                           ber, attended the monthly meetings of the               in a survey being conducted by the Suspen-\n                                           Council of the Inspectors General on Integrity          sion and Debarment Working Group of the\n                                           and Efficiency (CIGIE). The SEC IG was                  CIGIE Investigations Committee. In respond-\n                                           also interviewed by consultants performing an           ing to that survey, the OIG provided its views\n                                           organizational assessment of another OIG,               concerning a number of topics related to sus-\n                                           who were seeking information about the                  pension and debarment use, training, and\n                                           structure and position classifications within           practices.\n                                           high-performing OIGs such as the SEC OIG.\n                                           The SEC IG provided the consultants valu-                   In December 2010, the Counsel to the\n                                           able information about how to structure an              SEC IG received an Award for Leadership\n                                           OIG in an effective and efficient manner. In            from the Council of Counsels to the Inspector\n                                           addition, the SEC IG met with the newly-                General (CCIG), which is an informal organi-\n                                           confirmed IG of the Federal Housing Finance             zation of IG attorneys throughout the federal\n                                           Agency (FHFA) to discuss strategies for es-             government who meet monthly and coordi-\n                                           tablishing an effective OIG.                            nate and share information. The award rec-\n                                                                                                   ognized the Counsel to the SEC IG\xe2\x80\x99s exem-\n                                               The SEC IG is also a member of the                  plary leadership as Chair of the CCIG from\n                                           CIGIE\xe2\x80\x99s Professional Development Commit-                2008 to 2010. The Counsel to the SEC IG\n                                           tee, the purpose of which is to provide educa-          also attended the annual meeting of the Fi-\n\n\n\n                                                                                             21\n\n\x0cnancial Fraud Enforcement Task Force in De-         created by Section 989E of the Dodd-Frank\ncember 2010, to which representatives of all        Wall Street Reform and Consumer Protection\nfederal OIGs were invited.                          Act (Dodd-Frank Act). The CIGFO is chaired\n                                                    by the IG of the Department of Treasury and\n    The SEC IG participated in activities de-       also composed of the IGs of the Federal Re-\nsigned to coordinate efforts among the federal      serve Board, the Commodity Futures Trading\nfinancial regulatory IGs and strengthen the         Commission, the FDIC, the FHFA, the Na-\noversight of the federal financial regulatory       tional Credit Union Administration, the SEC,\nstructure as a whole. For example, the SEC          and the TARP. Under the Dodd-Frank Act,\nIG served on the Troubled Asset Relief Pro-         this Council is required to meet at least quar-\ngram (TARP) Inspector General Council,              terly to facilitate the sharing of information\nalong with the Special IG for the TARP, and         with a focus on the concerns that may apply\nIGs from the Department of the Treasury, the        to the broader financial sector and ways to\nBoard of Governors of the Federal Reserve           improve financial oversight. The CIGFO is\nSystem (Federal Reserve Board), the Federal         also required to submit an annual report to the\nDeposit Insurance Corporation (FDIC), the           newly-established Financial Stability Over-\nFHFA, the Department of Housing and Urban           sight Council and the Congress, which must\nDevelopment, the Treasury Inspector General         include a section that highlights the concerns\nfor Tax Administration and the Small Busi-          and recommendations of each IG who is a\nness Administration, and the Comptroller            member of the CIGFO and a summary of the\nGeneral of the United States.                       general observations of the CIGFO. During\n                                                    this reporting period, the SEC IG attended the\n    In addition, the SEC IG participated in the     CIGFO\xe2\x80\x99s meetings, and the Deputy Inspector\nactivities of the Council of Inspectors General     General participated in the CIGFO\xe2\x80\x99s confer-\non Financial Oversight (CIGFO), which was           ence calls.\n\n\n\n\n                                                  22\n\n\x0cU.S. Securities and Exchange Commission\n\n\n                                                                       SEMIANNUAL\n                                                                       REPORT TO\n                                                                       CONGRESS\n                                                 Of\xef\xac\x81ce of\n                                                Inspector\n                                                 General\n\n\n\n\n                                           AUDITS AND EVALUATIONS\n\n                                           OVERVIEW                                            vulnerabilities and inef\xef\xac\x81ciencies, resource\n                                                                                               availability, and complaints that are received\n                                                The OIG is required by the Inspector           from the Congress, internal SEC staff, the\n                                           General Act of 1978, as amended, to conduct         Government Accountability Of\xef\xac\x81ce (GAO),\n                                           audits and evaluations of agency programs,          and the public.\n                                           operations, and activities. The OIG\xe2\x80\x99s Of\xef\xac\x81ce\n                                           of Audits focuses its efforts on conducting and     Audits\n                                           supervising independent audits and evalua-\n                                           tions of the programs and operations of the             Audits examine operations and \xef\xac\x81nancial\n                                           various SEC divisions and of\xef\xac\x81ces. The Of\xef\xac\x81ce         transactions to ensure that proper manage-\n                                           of Audits also hires independent contractors        ment practices are being followed and re-\n                                           and subject matter experts to conduct work on       sources are adequately protected in accor-\n                                           its behalf. Speci\xef\xac\x81cally, the Of\xef\xac\x81ce of Audits        dance with governing laws and regulations.\n                                           conducts audits and evaluations to determine        Audits are systematic, independent, and\n                                           whether:                                            documented processes for obtaining evidence.\n                                                                                               In general, audits are conducted when \xef\xac\x81rm\n                                              \xe2\x80\xa2\t There is compliance with governing            criteria or data exist, sample data is measur-\n                                                 laws, regulations, and policies.              able, and testing internal controls are a major\n                                              \xe2\x80\xa2\t Resources are safeguarded and appro-          objective. Auditors collect and analyze data\n                                                 priately managed.                             and verify agency records by obtaining sup-\n                                                                                               porting documentation, issuing questionnaires,\n                                              \xe2\x80\xa2\t Funds are expended properly.                  and through physical inspection.\n                                              \xe2\x80\xa2\t Desired program results are achieved.\n                                                                                                   The OIG\xe2\x80\x99s audit activities include per-\n                                              \xe2\x80\xa2\t Information provided by the agency to         formance audits that are conducted of SEC\n                                                 the public and others is reliable.            programs and operations relating to areas such\n                                                                                               as the oversight and examination of regulated\n                                               Each year, the Of\xef\xac\x81ce of Audits prepares         entities, the protection of investor interests,\n                                           an annual audit plan. The plan includes work        and the evaluation of administrative activities.\n                                           that is selected for audit or evaluation based      The Of\xef\xac\x81ce of Audits conducts its audits in ac-\n                                           on risk and materiality, known or perceived         cordance with the generally accepted govern-\n\n                                                                                             23\n\n\x0cment auditing standards (Yellow Book) issued             Congress enacted the Securities Investor Pro-\nby the U.S. Comptroller General, OIG policy,             tection Act (SIPA) in 1970 to provide investors\nand guidance issued by the Council of the In-            protection against losses caused by the failure\nspectors General on Integrity and Ef\xef\xac\x81ciency              of broker-dealers. SIPA created the Securities\n(CIGIE).                                                 Investor Protection Corporation (SIPC), which\n                                                         is a not-for-pro\xef\xac\x81t membership corporation.\nEvaluations                                              SIPC or a SIPC employee either acts as trus-\n                                                         tee or works with an independent court-\n    The Of\xef\xac\x81ce of Audits also conducts evalua-            appointed trustee in liquidations of troubled\ntions of the SEC\xe2\x80\x99s programs and activities.              brokerage \xef\xac\x81rms to recover funds for investors\nEvaluations consist of reviews that often cover          with assets in bankrupt or \xef\xac\x81nancially troubled\nbroad areas and are typically designed to pro-           brokerage \xef\xac\x81rms. All broker-dealers registered\nduce timely and useful information associated            with the SEC under Section 15(b) of the Secu-\nwith current or anticipated problems. Evalua-            rities Exchange Act of 1934 are members of\ntions are generally conducted when a project\xe2\x80\x99s           SIPC with certain exceptions. The SEC is\nobjectives are based on specialty and highly             responsible for monitoring SIPC\xe2\x80\x99s activities\ntechnical areas, criteria or data are not \xef\xac\x81rm,           and, pursuant to SIPA, has delegated author-\nor needed information must be reported in a              ity to conduct inspections of SIPC, review\nshort period of time. The Of\xef\xac\x81ce of Audits\xe2\x80\x99               SIPC annual reports, and approve SIPC\xe2\x80\x99s by-\nevaluations are conducted in accordance with             laws, rules, and any amendments to the bylaws\nOIG policy, Yellow Book non-audit service                and rules.\nstandards, and guidance issued by the CIGIE.\n                                                              The audit\xe2\x80\x99s overall objective was to assess\nAudit Follow-up and Resolution                           the effectiveness of the SEC\xe2\x80\x99s oversight of\n                                                         SIPC. The audit examined whether the SEC\n    During this semiannual reporting period,             monitors SIPC\xe2\x80\x99s activities in accordance with\nthe SEC of\xef\xac\x81ces and divisions made signi\xef\xac\x81cant             governing legislation and performs periodic\nefforts to reduce the backlog of open recom-             and systematic inspections of SIPC\xe2\x80\x99s activities.\nmendations, while ensuring that the most re-             It also focused on determining whether the\ncent recommendations were fully imple-                   Commission conducts meaningful reviews of\nmented. Based on the appropriate evidence                SIPC\xe2\x80\x99s annual reports. The OIG also deter-\nand documentation management provided to                 mined where improvements and best practices\nthe OIG to support its implementation of the             could be implemented for the SEC\xe2\x80\x99s oversight\nOIG\xe2\x80\x99s recommendations, the OIG closed 83                 of SIPC.\nrecommendations related to 16 different Of-\n\xef\xac\x81ce of Audits reports during this semiannual               Results\nreporting period.\n                                                             The OIG audit found that the SEC\xe2\x80\x99s over-\n                                                         sight of SIPC is generally in compliance with\nAUDITS AND EVALUATIONS                                   SIPA. However, the audit found that signi\xef\xac\x81-\nCONDUCTED                                                cant improvements could be made to enhance\n                                                         the SEC\xe2\x80\x99s process for monitoring SIPC. We\nSEC\xe2\x80\x99s Oversight of the Securities                        found that the Division of Trading and Mar-\nInvestor Protection Corporation\xe2\x80\x99s\nActivities (Report No. 495)                              kets (TM) and the Of\xef\xac\x81ce of the General\n                                                         Counsel (OGC) currently do not have ade-\n  Background                                             quate written policies and procedures for\n                                                         monitoring SIPC\xe2\x80\x99s activities. The written\n    As a result of the collapse or near collapse         policies and procedures in place for TM\xe2\x80\x99s\nof several broker-dealers in the late 1960s,             oversight of SIPC are limited to a 1999\n\n                                                   24\n\n\x0cmemorandum that merely lists the SEC\xe2\x80\x99s re-                 We learned during our audit that the\nsponsibilities for monitoring SIPC pursuant to         GAO performed an audit of SIPC in 1992,\nSIPA. The 1999 memorandum does not pro-                which included a review of the SEC\xe2\x80\x99s moni-\nvide detailed information about TM\xe2\x80\x99s internal          toring of SIPC. In its audit, the GAO found\nprocedures for oversight activities, such as           that, since 1985, the SEC had evaluated\nhow proposed bylaws or amendments submit-              SIPC\xe2\x80\x99s operations only once and had not fol-\nted by SIPC are to be processed or how re-             lowed up on the 1985 evaluation to determine\nviews of SIPC\xe2\x80\x99s annual reports (including              if SIPC had addressed its recommendations.\nSIPC\xe2\x80\x99s \xef\xac\x81nancial statements) are to be per-             The GAO recommended that the SEC peri-\nformed. In addition, we found that some of             odically review SIPC\xe2\x80\x99s operations and its ef-\nthe limited information contained in the 1999          forts to ensure timely and cost-effective liqui-\nmemorandum is outdated.                                dations. In response to the GAO\xe2\x80\x99s recom-\n                                                       mendation, TM agreed to inspect SIPC every\n     The audit also found that OGC does not            four to \xef\xac\x81ve years. The OIG previously per-\nhave adequate documentation pertaining to              formed an audit of the SEC\xe2\x80\x99s oversight of\nits role in overseeing SIPC. OGC provides              SIPC\xe2\x80\x99s activities in March 2000. In that\nlegal guidance to TM related to SIPA liquida-          audit, the OIG found that since SIPC\xe2\x80\x99s incep-\ntions and monitors SIPA proceedings that are           tion in 1970, the SEC had inspected SIPC\nhandled by independent court-appointed trus-           only two times, once in 1985 and a second\ntees and SIPC. Our audit revealed that inter-          time in 1994. The OIG also identi\xef\xac\x81ed several\nnal policies or procedures regarding OGC\xe2\x80\x99s             areas not addressed in past SIPC inspections\nrole relating to SIPC\xe2\x80\x99s oversight are not ade-         that could improve oversight effectiveness and\nquately documented. Moreover, during the               recommended that TM and the Of\xef\xac\x81ce of\ntimeframe in which we conducted our audit,             Compliance Inspections and Examinations\nthere was signi\xef\xac\x81cant staff turnover in the             (OCIE) decide on a review schedule and in-\nOGC bankruptcy group, as the OGC attor-                spection scope for future SIPC inspections. In\nney who had provided oversight of SIPC for a           response to this recommendation made in\nnumber of years retired and was replaced by            2000, TM and OCIE agreed to prepare a re-\nanother attorney. Due to inadequate docu-              view schedule and inspection scope for future\nmentation of internal OGC policies and pro-            SIPC inspections. Notwithstanding this\ncedures, we found opposing opinions on how             agreement and this recommendation being\nSIPC monitoring activities should be per-              closed, our inquiry with TM and OCIE re-\nformed. For instance, the new OGC attorney             garding this matter revealed that TM and\nquestioned whether he should conduct certain           OCIE had never developed a review schedule\nmonitoring efforts that the previous attorney          or an inspection scope for future SIPC inspec-\nbelieved were effective mechanisms for scruti-         tions.\nnizing SIPA liquidations, stating his opinion\nthat such efforts would be too time-consuming              In addition, we noted that, in the SEC\xe2\x80\x99s\nfor large SIPA liquidations.                           2003 inspection of SIPC, the SEC identi\xef\xac\x81ed\n                                                       several de\xef\xac\x81ciencies in SIPC\xe2\x80\x99s operations re-\n     Our audit further found that the SEC              garding its controls over fees, an improperly\ndoes not inspect SIPC\xe2\x80\x99s activities in any sys-         denied claim, internal policies and guidance,\ntematic fashion. The SEC last performed a              education initiatives, and funding options.\nfull inspection of SIPC in 2003, and per-              Yet, without additional inspections, the SEC is\nformed a follow-up inspection in 2005. De-             unable to ensure that these de\xef\xac\x81ciencies have\nspite having made six \xef\xac\x81ndings in its 2003 in-          been appropriately addressed. The SEC has\nspection, the SEC does not have any de\xef\xac\x81nite            indicated that, as a result of its involvement\nplans to inspect SIPC in the near future.              with the liquidations of Lehman Brothers,\n                                                       Inc. (Lehman) and Bernard L. Madoff In-\n\n                                                 25\n\n\x0cvestment Securities, LLC (Madoff), further            Lehman trustee, as of September 30, 2010,\ninspections in the near future are not needed.        the entire administrative fees, including fees\nDue to the lack of periodic and systematic            for accountants, consultants, and others, to-\ninspections of SIPC by the SEC, 14 liquida-           taled approximately $420 million. We also\ntions from 2003 to date have not been subject         found that the fees paid to the trustee and his\nto the scrutiny of an SEC inspection.                 counsels processing the Madoff claims for the\n                                                      period from December 2008 to September\n    Our audit also found that the SEC does            2010 totaled approximately $102 million.\nnot perform a review of trustee fees on a sys-        Moreover, the fees paid to date for both the\ntematic basis. We found that such reviews are         Lehman and Madoff liquidations are a mere\nparticularly necessary because there are few, if      fraction of the amounts that will eventually be\nany, limits on the fees that may be awarded.          sought because, despite signi\xef\xac\x81cant progress in\nFirst, although SIPA liquidations are similar to      resolving certain customer claims, signi\xef\xac\x81cant\nordinary bankruptcy cases, in which trustee           work relating to customer claims with pending\nfees are subject to legal limits, SIPA does not       litigation remains to be done.\nprovide any limit on trustee fees in SIPA liq-\nuidations. Second, for liquidations in which               Finally, our audit disclosed that many in-\ntrustee fees are paid from the SIPC fund              vestors are still confused about SIPA coverage.\nwithout a reasonable expectation of recoup-           As indicated by TM and evidenced by the\nment, courts have no discretion whatsoever            Of\xef\xac\x81ce of Investor Education and Advocacy\xe2\x80\x99s\nunder SIPA to limit fees that SIPC has rec-           (OIEA) log of complaints and questions re-\nommended for trustees or their counsels.              garding SIPC from investors, it is dif\xef\xac\x81cult for\nThus, in such situations, even if a court \xef\xac\x81nds        investors to understand protection against\nthe amount of fees awarded to a trustee to be         losses available under SIPA and which securi-\nexcessive, it is required to approve such exces-      ties are covered under SIPA. We found that\nsive fees if SIPC determines that the fees are        certain public service campaigns by SIPC do\nreasonable. We found that, in one case, a             not fully describe the exceptions to SIPA cov-\nSouthern District of New York bankruptcy              erage. Due to the complexity of various fac-\njudge deemed fees to be awarded to the trus-          tors that determine coverage under SIPA, it is\ntee in a SIPA liquidation to be excessive, but        dif\xef\xac\x81cult to explain the limitations of SIPA\nfound that he had no choice other than to ap-         protection to investors. In addition, many in-\nprove the fees. Third, even where SIPC ad-            vestors are unaware of SIPA until they learn\nvances the funds and there is reasonable ex-          that their broker-dealers have failed.\npectation of recoupment, the statute provides\nthe courts with only limited discretion to re-            Recommendations\nduce the amount of trustee fees recom-\nmended by SIPC.                                           On March 30, 2011, the OIG issued a\n                                                      \xef\xac\x81nal report containing the results of its audit.\n     The audit further found that signi\xef\xac\x81cant          The report included the following 12 recom-\ncriticism and concern had been expressed re-          mendations for improving the SEC\xe2\x80\x99s monitor-\ngarding the amount of trustee fees that were          ing of SIPC\xe2\x80\x99s processes and ensuring that the\nawarded in the two largest liquidations in            SEC properly oversees SIPC pursuant to\nSIPC\xe2\x80\x99s history, Lehman and Madoff. Accord-            SIPA:\ning to the latest published report, the fees paid\nto the trustee and his counsels processing the            (1)\t   TM should document its procedures\nLehman claims for the period from Septem-                        and processes for its oversight and\nber 2008 to September 2010 totaled ap-                           monitoring of SIPC pursuant to\nproximately $108 million. According to the                       SIPA.\nfourth interim fee application \xef\xac\x81led by the\n\n                                                    26\n\n\x0c(2)   TM should complete its efforts to                    ment conducted prior to the inspec-\n      update its internal memorandum                       tion.\n      that describes its oversight responsi-\n      bilities under SIPA and include its            (7)   TM, in coordination with OGC,\n      current practices and, where appro-                  should conduct additional oversight\n      priate, the legislative amendments                   of SIPC\xe2\x80\x99s assessments of the reason-\n      that were made to SIPA in July 2010                  ableness of trustee fees and encour-\n      by the Dodd-Frank Wall Street Re-                    age SIPC to negotiate with outside\n      form and Consumer Protection Act.                    court-appointed trustees more vig-\n                                                           orously to obtain a reduction in fees\n(3)   OGC should consult with TM to                        greater than ten percent.\n      clarify its role in monitoring SIPC\n      and document the responsibilities              (8)   The bankruptcy group in OGC and\n      and procedures it follows in regard                  TM should decide on the scope and\n      to the Commission\xe2\x80\x99s oversight of                     frequency of the Commission staff \xe2\x80\x99s\n      SIPC.                                                monitoring of SIPC\xe2\x80\x99s assessments of\n                                                           the reasonableness of trustee fees\n(4)   OGC should consider the costs and                    paid by SIPC, rather than relying\n      bene\xef\xac\x81ts related to certain activities                only on inspections of SIPC, which\n      that the retired attorney performed                  do not occur on a systematic basis.\n      and determine what, if any, other\n      activities are appropriate to ade-             (9)   TM, in consultation with the Com-\n      quately monitor SIPC.                                mission, shall determine whether to\n                                                           request that Congress modify SIPA\n(5)   TM and OCIE should conduct                           to allow bankruptcy judges who pre-\n      meetings, on at least an annual basis,               side over SIPA liquidations to assess\n      to determine when an inspection of                   the reasonableness of administrative\n      SIPC should occur, based on the on-                  fees in all cases where administrative\n      going liquidations, to ensure system-                fees are paid by SIPC.\n      atic and risk-based monitoring of\n      SIPC\xe2\x80\x99s operations. In these meet-              (10) TM, in coordination with OIEA,\n      ings, TM and OCIE should develop                    should encourage SIPC to designate\n      a schedule for future inspections                   an employee whose responsibilities\n      based upon objective criteria or de-                include improving investor educa-\n      \xef\xac\x81ned risk factors, such as conducting               tion and preventing further confu-\n      inspections based upon the number                   sion among investors about coverage\n      of SIPC liquidations.                               available under SIPA.\n\n(6)   TM and OCIE should perform a                   (11) TM should support SIPC\xe2\x80\x99s efforts to\n      risk assessment to determine prob-                  improve investor education, includ-\n      lematic areas or liquidations that are              ing encouraging SIPC to strongly\n      deemed to be complex prior to the                   consider and, as appropriate, im-\n      next inspection of SIPC, as they did                plement OIEA\xe2\x80\x99s suggestions to im-\n      prior to the commencement of the                    prove investor awareness.\n      2003 inspection of SIPC. The scope\n      of each future inspection should take          (12) TM, in coordination with OIEA and\n      into consideration the risk assess-                 in consultation with the Commis-\n                                                          sion, should utilize more effective\n\n\n                                               27\n\n\x0c           methods to communicate with inves-                      The SEC has implemented a collaborative\n           tors in case of the failure of broker-              effort to comply with HSPD-12 among three\n           dealers, such as notifying investors of             SEC of\xef\xac\x81ces: the Of\xef\xac\x81ce of Information Tech-\n           the status of the Commission\xe2\x80\x99s ef-                  nology (OIT), the Of\xef\xac\x81ce of Administrative\n           forts throughout the liquidation                    Services (OAS), and the Of\xef\xac\x81ce of Human Re-\n           process or designating an employee,                 sources (OHR). OIT is responsible for over-\n           as appropriate, who can communi-                    seeing the implementation of the HSPD-12\n           cate directly with investors on mat-                program, assigning roles and responsibilities,\n           ters unique to each liquidation case.               and for implementing technological solutions\n                                                               for the use of HSPD-12 credentials for identi-\n    Management fully concurred with all of the                 \xef\xac\x81cation and authentication to SEC logical in-\nOIG\xe2\x80\x99s recommendations. The OIG\xe2\x80\x99s report,                       formation systems. OAS is responsible for\nSEC\xe2\x80\x99s Oversight of the Securities Investor Protection Cor-     enrolling PIV credentials into its physical ac-\nporation\xe2\x80\x99s Activities, is available on our website at          cess control system and providing temporary\nhttp://www.sec-oig.gov/Reports/AuditsInspe                     SEC-issued badges while employees or con-\nctions/2011/495.pdf.                                           tractors are awaiting receipt of their PIV cre-\n                                                               dentials. OHR has responsibility for the most\nThe SEC\xe2\x80\x99s Implementation of and                                essential component of the SEC\xe2\x80\x99s implemen-\nCompliance with Homeland Security                              tation of and compliance with HSPD-12,\nPresidential Directive 12 (HSPD-12)                            which is sponsoring and adjudicating the\n(Report No. 481)                                               background investigation of an applicant.\n   Background\n                                                                   The primary objective of the audit was to\n     On August 27, 2004, President George W.                   determine if the SEC is fully compliant with\nBush signed Homeland Security Presidential                     HSPD-12 and the implementing standards\nDirective 12 (HSPD-12), \xe2\x80\x9cPolicy for a Com-                     and guidance. Other speci\xef\xac\x81c audit objectives\nmon Identi\xef\xac\x81cation Standard for Federal Em-                     were as follows:\nployees and Contractors.\xe2\x80\x9d This directive re-\nquires federal agencies to have programs in                        \xe2\x80\xa2\t Evaluate whether the SEC has ade-\nplace to ensure that identi\xef\xac\x81cation issued by                          quate controls and the necessary proc-\neach agency to federal employees and con-                             esses and procedures to perform back-\ntractors meets a common standard. Those                               ground investigations, adjudicate re-\nstandards and technical speci\xef\xac\x81cations were set                        sults, and issue credentials.\nforth in Federal Information Processing Stan-                      \xe2\x80\xa2\t Evaluate the roles and responsibilities\ndards Publication (FIPS) 201, \xe2\x80\x9cPersonal Iden-                         for the HSPD-12 initiative among the\ntity Veri\xef\xac\x81cation (PIV) of Federal Employees                           various SEC of\xef\xac\x81ces involved in the\nand Contractors,\xe2\x80\x9d which was initially issued                          process, including OAS, OHR, and\nby the Department of Commerce\xe2\x80\x99s National                              OIT.\nInstitute of Standards and Technology (NIST)\n                                                                   \xe2\x80\xa2\t Assess compliance with HSPD-12 and\non February 25, 2005, and revised in March\n2006. On August 5, 2005, the Of\xef\xac\x81ce of                                 determine whether all the necessary\nManagement and Budget (OMB) issued                                    equipment has been purchased to im-\nmemorandum M-05-24, \xe2\x80\x9cImplementation of                                plement HSPD-12 throughout the\nHomeland Security Presidential Directive                              SEC.\n(HSPD) 12 - Policy for a Common Identi\xef\xac\x81ca-                         \xe2\x80\xa2\t Evaluate whether the HSPD-12 proc-\ntion Standard for Federal Employees and                               esses and procedures are consistently\nContractors\xe2\x80\x9d (M-05-24), which provided im-                            applied throughout the SEC (i.e., at\nplementation instructions for HSPD-12 and                             headquarters and regional of\xef\xac\x81ces).\nFIPS 201.\n\n                                                             28\n\n\x0c  Results                                                 using the appropriate standards for making\n                                                          these determinations.\n     The audit identi\xef\xac\x81ed de\xef\xac\x81ciencies in nearly\nevery aspect of the SEC\xe2\x80\x99s HSPD-12 program,                    The audit determined that the SEC\xe2\x80\x99s re-\nas well as signi\xef\xac\x81cant concerns about the SEC\xe2\x80\x99s            gional of\xef\xac\x81ces have not consistently enrolled\nauthority to determine eligibility for access to          PIV badges into the SEC\xe2\x80\x99s physical access\nclassi\xef\xac\x81ed information and the current process             control system. We also found that the SEC\xe2\x80\x99s\nfor granting temporary access to SEC facili-              badging policy is outdated and does not in-\nties. We also found that the SEC has missed               clude policies and procedures for issuing and\nvirtually all the deadlines established by OMB            revoking badges, or for requiring the use of\nguidance for implementation of HSPD-12                    the PIV credentials as the common means of\nand continues to remain noncompliant as a                 authentication for access to SEC facilities and\nresult of delays in verifying or completing               information systems. We further found that\nbackground investigations for 1,263 employees             OHR\xe2\x80\x99s Personnel Security Branch does not\nwho have more than 15 years of federal gov-               have policies or procedures speci\xef\xac\x81c to adjudi-\nernment service.                                          cating foreign nationals.\n\n     In addition, the audit found that the SEC                 Further, the audit determined that OIT\xe2\x80\x99s\nis currently unable to determine the actual               asset inventory does not account for keyboards\nnumber of contractors who are employed by                 (some of which contain card readers that\nthe SEC and, thus, there is a serious question            could be used to authenticate PIV credentials)\nas to whether the SEC accurately reported its             and lacks detail necessary to identify laptops\nstatistics related to contractors in its December         that have card readers, which may cause OIT\n31, 2010, quarterly HSPD-12 Implementation                to unnecessarily purchase new keyboards and\nStatus Report to OMB. Further, during our                 laptops with card readers or external card\naudit, we compared the SEC\xe2\x80\x99s September                    readers. In addition, the audit found that the\n2010 quarterly HSPD-12 Implementation                     SEC expended a total of approximately\nStatus Report with reports of (1) other federal           $144,000 to employ registrars between June\n\xef\xac\x81nancial agencies, and (2) federal agencies of            2009 and December 2010, which would have\nsimilar size to the SEC, and we found that the            been avoided if the SEC had implemented\nSEC lagged well behind both groups.                       HSPD-12 within the required timeframes.\n                                                          Moreover, the audit found that based on the\n     The audit also found that since June 30,             average number of transactions processed per\n2008, the SEC has adjudicated and deter-                  day, the SEC requires only one part-time reg-\nmined the eligibility of 26 employees and con-            istrar. We concluded that the agency could\ntractors to access classi\xef\xac\x81ed information with-            save $108,000 annually by employing one\nout receipt of delegated authority from the               part-time registrar rather than two full-time\nDirector of National Intelligence (DNI),                  registrars.\nwhich Executive Order 13467 established as\nthe \xef\xac\x81nal authority to designate an agency to                  Finally, our audit found that OAS\xe2\x80\x99s Physi-\nmake such determinations. We also found                   cal Security Branch is not maintaining visitor\nthat the SEC\xe2\x80\x99s determinations of eligibility for          record logs in accordance with the National\naccess to classi\xef\xac\x81ed information were based on             Archives and Records Administration\xe2\x80\x99s Gen-\nincorrect policies and procedures. Addition-              eral Records Schedule retention requirement\nally, we found that OAS\xe2\x80\x99s Physical Security               of two years. We noted that the failure to re-\nBranch is making eligibility determinations for           tain these records for the required time period\napplicants seeking temporary access to SEC                hampers the Physical Security Branch\xe2\x80\x99s ability\nfacilities without the proper authority.                  to analyze visitor logs effectively to determine\nMoreover, the Physical Security Branch is not\n\n                                                    29\n\n\x0cif visitors are accessing the agency inappro-            (5)\t   Upon receipt of the updated con-\npriately by circumventing the badging process.                  solidated contractor list, OHR\xe2\x80\x99s Per-\n                                                                sonnel Security Branch should de-\n  Recommendations                                               termine which contractors do not\n                                                                have successfully adjudicated back-\n     On March 31, 2011, the OIG issued a \xef\xac\x81-                     ground investigations on record and\nnal report containing the results of its audit.                 develop a plan to begin the required\nThe report included 25 recommendations                          background investigations immedi-\nthat, once fully implemented, should ensure                     ately.\nthe Commission\xe2\x80\x99s compliance with HSPD-12.\nOf the 25 recommendations, seven were di-                (6)\t   Upon receipt of the updated con-\nrected to OHR, ten were to directed OAS, \xef\xac\x81ve                    solidated contractor list, OHR\nwere directed to the Of\xef\xac\x81ce of the Executive                     should ensure that accurate status\nDirector (OED), and three were directed to                      reporting has been made to OMB.\nOIT. The report\xe2\x80\x99s recommendations were as\nfollows:                                                 (7)\t   OED should discontinue adjudicat-\n                                                                ing all eligibility determinations for\n   (1)\t   OHR should immediately prepare                        access to classi\xef\xac\x81ed information or\n          formal, documented plans for initiat-                 holding a sensitive position until the\n          ing background investigations for all                 SEC has received an appropriate\n          current employees who do not have                     delegation of authority to conduct\n          successfully adjudicated background                   such determinations from the DNI.\n          investigations on record, commensu-\n          rate with risk.                                (8)\t   OED should identify all eligibility\n                                                                determinations for access to classi\xef\xac\x81ed\n   (2)\t   OHR should immediately, but no                        information or holding a sensitive\n          later than 90 days after the issuance                 position adjudicated by the SEC\n          of this report, initiate background                   since June 30, 2008, and, upon re-\n          investigations for all current employ-                ceipt of authority from the DNI,\n          ees who do not have successfully ad-                  conduct a quality control assessment\n          judicated background investigations                   to ensure that the determinations\n          on record, commensurate with risk.                    were conducted in accordance with\n                                                                the uniform policies and procedures\n   (3)\t   OAS should identify and develop a                     developed by the DNI.\n          consolidated list of all contractors\n          who are employed by the Commis-                (9)\t   OED, upon receipt of authority\n          sion. In addition, OAS should coor-                   from the DNI to make eligibility de-\n          dinate with the Contracting Of\xef\xac\x81cer\xe2\x80\x99s                  terminations for access to classi\xef\xac\x81ed\n          Technical Representatives and In-                     information or holding a sensitive\n          spection and Acceptance Of\xef\xac\x81cials to                   position, should use the uniform\n          implement policies and procedures                     policies and procedures developed by\n          for ensuring that the list remains up-                the DNI when making such deter-\n          dated.                                                minations.\n\n   (4)\t   OAS should provide the OHR\xe2\x80\x99s Per-              (10)\t OAS should immediately discontinue\n          sonnel Security Branch with a copy                   making eligibility determinations for\n          of the updated consolidated contrac-                 persons requiring temporary access\n          tor list on a weekly basis.                          to the SEC\xe2\x80\x99s facilities or information\n                                                               systems without proper authoriza-\n                                                               tion.\n                                                   30\n\n\x0c(11) OAS should immediately provide                      proper practices for issuance and\n     OHR\xe2\x80\x99s Personnel Security Branch                     revocation of badges, including PIV\n     with a list of all persons who have                 cards, to SEC employees and con-\n     been provided or denied access                      tractors at all Commission facilities\n     based on the Physical Security                      and post the revised policy on the\n     Branch\xe2\x80\x99s risk assessments, as well as a             Commission\xe2\x80\x99s intranet site. In addi-\n     copy of all \xef\xac\x81ngerprints records, sup-               tion, OAS should communicate the\n     porting documentation, and the re-                  new policy to all employees and con-\n     sults of the risk assessments.                      tracting of\xef\xac\x81cials.\n\n(12) OHR, in coordination with OAS,                 (18) OAS should develop and implement\n     should develop policies and proce-                  a plan to systematically revoke all\n     dures for determining the eligibility               Commission-issued badges for all\n     of contractors, visitors, and guests                employees and contractors who have\n     requiring temporary access to the                   been issued HSPD-12 badges and\n     SEC\xe2\x80\x99s facilities or information sys-                ensure that the plan is implemented\n     tems.                                               no later than six months after the\n                                                         date of issuance of the OIG\xe2\x80\x99s report.\n(13) OAS should communicate to re-\n     gional of\xef\xac\x81ce staff its expectations for        (19) OHR should develop, implement,\n     enrolling PIV credentials into their                and post in multiple locations (e.g.,\n     physical access control systems and                 agency intranet site, human re-\n     using PIV credentials as the primary                sources of\xef\xac\x81ces, regional of\xef\xac\x81ces, con-\n     badge for physical access to the                    tractor orientation) its appeals pro-\n     SEC\xe2\x80\x99s facilities.                                   cedures for individuals who are de-\n                                                         nied credentials or whose credentials\n(14) OAS should require administrative                   are revoked.\n     of\xef\xac\x81cers in the regional of\xef\xac\x81ces, or des-\n     ignated points of contact, to enroll           (20) OHR should develop internal poli-\n     PIV cards in the SEC\xe2\x80\x99s physical ac-                 cies and procedures for suitability\n     cess control system.                                determinations for foreign nationals.\n\n(15) OED should communicate to all                  (21) OIT should immediately conduct an\n     SEC employees and contractors their                 audit of its inventory to identify and\n     responsibility to inform the appro-                 track all keyboards and laptops that\n     priate regional of\xef\xac\x81ce of\xef\xac\x81cial that they             contain card readers.\n     have been issued a PIV card so that\n     the card can be enrolled into the              (22) OIT should promptly deploy appro-\n     SEC physical access control system.                 priate technology (e.g., laptops with\n                                                         internal card readers, keyboards with\n(16) OED should develop and implement                    card readers, or external card read-\n     a policy requiring the PIV badge to                 ers) to employees and contractors\n     be used as a common and primary                     who do not have card readers.\n     means of authentication for physical\n     and logical access.                            (23) OIT should eliminate one full-time\n                                                         registrar and split the time of the\n(17) OAS should revise and update its                    other full-time registrar between the\n     \xe2\x80\x9cIdenti\xef\xac\x81cation Cards, Press Passes                  SEC\xe2\x80\x99s Operations Center in Alexan-\n     and Proximity Access Control                        dria, Virginia, and its headquarters\n     Cards\xe2\x80\x9d policy to re\xef\xac\x82ect current and                 location.\n                                               31\n\x0c    (24)\t OAS should retain visitor control                 On March 31, 2010, the SEC OIG issued\n          logs for a period not less than two          a Report of Investigation entitled Investigation of\n          years after \xef\xac\x81nal entry or two years          the SEC\xe2\x80\x99s Response to Concerns Regarding Robert\n          after date of document in accor-             Allen Stanford\xe2\x80\x99s Alleged Ponzi Scheme (OIG Inves-\n          dance with the National Archives             tigative Report No. 526). In that report, the\n          and Records Administration\xe2\x80\x99s Gen-            OIG found that the SEC\xe2\x80\x99s Fort Worth Re-\n          eral Records Schedule.                       gional Of\xef\xac\x81ce had been aware since 1997 that\n                                                       \xef\xac\x81nancier Robert Allen Stanford was likely op-\n    (25)\t OAS should perform periodic analy-           erating a Ponzi scheme. The investigation also\n          sis of visitor data to ensure that visi-     discovered that after a series of OCIE exami-\n          tors are not circumventing the               nations of Stanford Group Company (Stan-\n          HSPD-12 requirements.                        ford\xe2\x80\x99s registered investment adviser) in which\n                                                       each examination concluded that the likeli-\n     Management fully concurred with all 25            hood of a Ponzi scheme or similar fraud ex-\nrecommendations and has initiated actions to           isted, the SEC\xe2\x80\x99s Fort Worth Enforcement unit\naddress the issues described in the report. The        did not take signi\xef\xac\x81cant action to investigate\nOIG\xe2\x80\x99s report, The SEC\xe2\x80\x99s Implementation of and          such suspected fraud until late 2005. The\nCompliance with Homeland Security Presidential Di-     OIG investigation found that SEC-wide insti-\nrective 12, is available on our website at             tutional in\xef\xac\x82uences within Enforcement did\nhttp://www.sec-oig.gov/Reports/AuditsInspe             factor into its repeated decisions not to under-\nctions/2011/481.pdf.                                   take a full and thorough investigation of Stan-\n                                                       ford, notwithstanding staff awareness that the\nOCIE Regional Offices\xe2\x80\x99 Referrals to                    potential fraud was growing. The OIG inves-\nEnforcement (Report No. 493)                           tigation found that senior Fort Worth of\xef\xac\x81cials\n                                                       perceived that they were being judged on the\n  Background                                           numbers of cases they brought, so-called\n                                                       \xe2\x80\x9cstats,\xe2\x80\x9d and communicated to the Enforce-\n     The mission of OCIE is to conduct and\n                                                       ment staff that novel or complex cases were\ncoordinate the nationwide examination pro-\n                                                       disfavored. As a result, cases like Stanford,\ngram for entities over which the SEC has\n                                                       which were not considered \xe2\x80\x9cquick-hit\xe2\x80\x9d or\nregulatory authority. While conducting in-\n                                                       \xe2\x80\x9cslam-dunk\xe2\x80\x9d cases, were not encouraged.\nspections and examinations, OCIE staff re-\nview the books and records of regulated enti-\n                                                            On September 22, 2010, the U.S. Senate\nties, conduct interviews with management and\n                                                       Committee on Banking, Housing, and Urban\n\xef\xac\x81rm employees, and analyze the entities\xe2\x80\x99 op-\n                                                       Affairs held a hearing on the SEC\xe2\x80\x99s investiga-\nerations. One goal of the examination or in-\n                                                       tion and response to Robert Allen Stanford\xe2\x80\x99s\nspection is to determine if the registrant is in\n                                                       alleged Ponzi scheme. The Committee heard\ncompliance with federal securities laws and\n                                                       testimony from SEC of\xef\xac\x81cials about the Stan-\nregulations. When the registrant\xe2\x80\x99s noncompli-\n                                                       ford matter and sought information concern-\nance or internal control failures are considered\n                                                       ing the steps the agency was taking to prevent\nserious, the staff may refer the matter to the\n                                                       future \xef\xac\x81nancial frauds and restore investor\nDivision of Enforcement (Enforcement),\n                                                       con\xef\xac\x81dence. Then-Committee Chairman\nwhich then determines whether to investigate\n                                                       Christopher J. Dodd (D-Connecticut) ex-\nthe matter further and, ultimately, whether to\n                                                       pressed concern that there may be other in-\nrecommend an enforcement action to the\n                                                       stances in which Enforcement did not pursue\nCommission. Many of the Commission\xe2\x80\x99s en-\n                                                       cases identi\xef\xac\x81ed by regional of\xef\xac\x81ce examiners\nforcement actions each year are derived from\n                                                       because of the perception that SEC headquar-\nthe examination program\xe2\x80\x99s referrals to En-\n                                                       ters in Washington was only interested in\nforcement.\n                                                       \xe2\x80\x9cstats\xe2\x80\x9d and \xe2\x80\x9cquick hit\xe2\x80\x9d cases. Chairman\n\n                                                     32\n\n\x0cDodd requested that the SEC OIG conduct a                 ticularly in FY 2010, with some respondents\nreview to determine if the concerns about the             identifying Enforcement\xe2\x80\x99s newly-created Asset\nFort Worth Regional Of\xef\xac\x81ce found in the                    Management Unit as having signi\xef\xac\x81cantly as-\nOIG\xe2\x80\x99s Stanford report also existed in other               sisted with the acceptance rate of OCIE refer-\nSEC regional of\xef\xac\x81ces.                                      rals.\n\n     The objectives of the OIG\xe2\x80\x99s audit were as                We also found that the large majority of\nfollows:                                                  examiners do not believe that Enforcement\n                                                          will only take referrals that involve high dollar\n   \xe2\x80\xa2\t Determine whether and to what extent                value amounts and cases that can easily be\n      OCIE examiners were frustrated in                   brought against the violator. In addition,\n      matters other than Stanford where En-               many of the survey participants who did be-\n      forcement did not pursue cases identi-              lieve that Enforcement was particularly con-\n      \xef\xac\x81ed by examiners in the SEC regional                cerned with dollar thresholds or \xe2\x80\x9cstats\xe2\x80\x9d noted\n      of\xef\xac\x81ces.                                             that this approach was more evident in the\n   \xe2\x80\xa2\t Determine if Enforcement has taken                  past, i.e., \xe2\x80\x9cprior to Madoff.\xe2\x80\x9d\n      appropriate and suf\xef\xac\x81cient action to ad-\n      dress referrals received from OCIE ex-                  The OIG audit did \xef\xac\x81nd certain aspects of\n      amination staff in the SEC regional                 the referral process that could use improve-\n      of\xef\xac\x81ces.                                             ment. We found that OCIE sometimes pre-\n                                                          sents referrals informally to Enforcement prior\n   \xe2\x80\xa2\t Determine if problematic trends exist               to proceeding with the formal referral process.\n      where appropriate action was not taken              As a result, there is a concern that not all\n      based on an OCIE referral and where                 referral-worthy matters may be captured. We\n      improvements are needed and best                    also found that internal concerns over incen-\n      practices can be identi\xef\xac\x81ed to enhance               tives and metrics with regard to the percentage\n      the OCIE examination referral process               of OCIE referrals being accepted by En-\n      in the SEC regional of\xef\xac\x81ces.                         forcement may have led OCIE senior of\xef\xac\x81cials\n                                                          to request that a particular referral not be cap-\n  Results                                                 tured in the Tips, Complaints, and Referrals\n                                                          (TCR) system to avoid the risk of having large\n     The OIG found that examiners across the              numbers of outstanding referrals. We also\nSEC regional of\xef\xac\x81ces are generally satis\xef\xac\x81ed                found that the level of communication be-\nwith their Enforcement attorney counterparts.             tween OCIE and Enforcement after a referral\nFor example, the OIG found through a survey               is not always consistent in the regional of\xef\xac\x81ces.\nof all OCIE examiners throughout the SEC                  As a result, a number of examiners indicated\nregional of\xef\xac\x81ces that most survey respondents              that they were unaware of the current status of\nindicated that they are either \xe2\x80\x9ccompletely sat-           referrals they provided to Enforcement. Fur-\nis\xef\xac\x81ed\xe2\x80\x9d or \xe2\x80\x9csomewhat satis\xef\xac\x81ed\xe2\x80\x9d with actions                ther, OCIE and Enforcement use different sys-\ntaken by Enforcement in response to                       tems to track referrals, and those systems do\nexamination-related referrals. Speci\xef\xac\x81cally, the           not currently interface with each other. In ad-\nOIG found that when combining the re-                     dition, while the SEC established a Home Of-\nsponses for \xe2\x80\x9ccompletely satis\xef\xac\x81ed\xe2\x80\x9d and \xe2\x80\x9csome-              \xef\xac\x81ce Enforcement Referral Review Committee\nwhat satis\xef\xac\x81ed\xe2\x80\x9d for respondents, the majority of           to serve as an integral part of the oversight of\nSEC regional of\xef\xac\x81ces had a combined level of               the referrals process, the lack of full coopera-\nsatisfaction ranging from 70 to 87 percent. We            tion from some regional of\xef\xac\x81ces limited the\nfurther found that where there was dissatisfac-           Committee\xe2\x80\x99s ability to bring more transpar-\ntion with the referral process, the level of con-         ency and consistency to Enforcement decisions\ncern dramatically dropped over time and par-              to pursue referrals.\n\n                                                    33\n\n\x0c  Recommendations                                        (5)\t   OCIE should ensure that all referrals\n                                                                currently in the Super Tracking and\n    On March 30, 2011, the OIG issued a \xef\xac\x81-                      Reporting System (STARS) are ap-\nnal report containing the results of its audit.                 propriately and adequately updated\nThe report included the following seven rec-                    with the information in the Home\nommendations that were designed to result in                    Of\xef\xac\x81ce Enforcement Referral Review\nsigni\xef\xac\x81cant improvements to the enforcement                      Committee spreadsheet.\nreferrals process and ensure that all referral-\nworthy matters are appropriately captured                (6)\t   OCIE and Enforcement should con-\nand tracked:                                                    tinue their efforts to establish a com-\n                                                                plete interface between STARS or its\n   (1)\t   OCIE and Enforcement should care-                     equivalent, the Hub Enforcement\n          fully review the information provided                 case tracking system, and the TCR\n          from the OIG survey regarding the                     system.\n          situations where OCIE examiners\n          expressed serious concerns that en-            (7)\t   OCIE and Enforcement should de-\n          forcement action was unsatisfactory,                  termine the future of the Home Of-\n          particularly where the examiners be-                  \xef\xac\x81ce Enforcement Referral Review\n          lieved there was ongoing wrongdo-                     Committee. If the Committee will\n          ing, and take appropriate action, in-                 not continue, they should ensure that\n          cluding potentially reversing previ-                  its responsibilities are carried out by\n          ous Enforcement decisions, as neces-                  another of\xef\xac\x81ce or group that will con-\n          sary.                                                 tinue to oversee the referral process\n                                                                and track outstanding referrals in a\n   (2)\t   OCIE and Enforcement should take                      meaningful way.\n          appropriate actions to enforce the\n          policy in all regional of\xef\xac\x81ces that all          Management fully concurred with all of\n          OCIE referrals are made in writing         the OIG\xe2\x80\x99s recommendations. The OIG\xe2\x80\x99s\n          using the standard Enforcement Re-         report, OCIE Regional Of\xef\xac\x81ces\xe2\x80\x99 Referrals to En-\n          ferral Cover Memorandum or an              forcement, is available on our website at\n          equivalent record, as appropriate in       http://www.sec-oig.gov/Reports/AuditsInspe\n          light of the new TCR system and            ctions/2011/493.pdf.\n          other programmatic changes.\n                                                     Audit of the SEC Budget Execution\n   (3)\t   OCIE should issue policy or guid-          Cycle (Report No. 488)\n          ance requiring OCIE examiners in\n          regional of\xef\xac\x81ces to formally refer all          Background\n          signi\xef\xac\x81cant matters to Enforcement,\n          not merely the matters that En-                The OIG contracted the services of Acu-\n          forcement has already decided to           ity Consulting, Inc. (Acuity) to conduct an\n          accept.                                    audit of the SEC\xe2\x80\x99s budget execution process\n                                                     and to identify potential areas for improve-\n   (4)\t   OCIE should take appropriate ac-           ment. The SEC is \xef\xac\x81nanced through an an-\n          tions to enforce its policy in all re-     nual general fund appropriation that is en-\n          gional of\xef\xac\x81ces that all OCIE referrals      acted by Congress that may remain available\n          be uploaded into the TCR system            until expended, and through occasional sup-\n          regardless of whether Enforcement          plemental appropriations that are available for\n          has accepted the referral.                 a speci\xef\xac\x81ed period of time. During FYs 2009\n                                                     and 2010, as in other years, the SEC\xe2\x80\x99s annual\n                                                     general fund appropriation consisted of a\n\n                                                   34\n\n\x0c\xe2\x80\x9cSalaries and Expenses\xe2\x80\x9d account within the                 Results\nPresident\xe2\x80\x99s Budget. In FYs 2009 and 2010,\nthe SEC obligated over $966 million and $1.1                  The audit identi\xef\xac\x81ed a number of control\nbillion, respectively, against the funds avail-          de\xef\xac\x81ciencies concerning the SEC\xe2\x80\x99s budget exe-\nable. Pursuant to Public Law 111-32, enacted             cution process. Speci\xef\xac\x81cally, the audit found\non June 24, 2009, the SEC received a supple-             that the SEC may have violated 31 U.S.C. \xc2\xa7\nmental appropriation of $10 million that was             1301, commonly referred to as the Purpose\navailable for FYs 2009 and 2010 for the statu-           Statute, due to inconsistent appropriations se-\ntory purpose of \xe2\x80\x9cinvestigation of securities             lection on contract modi\xef\xac\x81cations for informa-\nfraud.\xe2\x80\x9d                                                  tion technology acquisitions and expert wit-\n                                                         ness fee services once an appropriation had\n    The SEC\xe2\x80\x99s Of\xef\xac\x81ce of Financial Manage-                 been selected for the initial contract. The\nment (OFM) administers the agency\xe2\x80\x99s \xef\xac\x81nan-                audit identi\xef\xac\x81ed a total of eight contracts that\ncial management and budget functions.                    inconsistently cited appropriations once the\nOFM\xe2\x80\x99s Planning and Budget Of\xef\xac\x81ce is respon-               initial appropriation was selected.\nsible for the formulation and execution of the\nSEC\xe2\x80\x99s budget. OFM uses two software appli-                    Guidance found in the GAO\xe2\x80\x99s \xe2\x80\x9cPrinciples\ncations for the budget development and                   of Federal Appropriations Law\xe2\x80\x9d provides that\nbudget execution processes: (1) the Budget               when two appropriations are available for the\nand Program Performance Analysis System                  same purpose, an agency is required to select\n(BPPAS), an activity-based costing/                      one appropriation and continue to use that\nperformance-based budgeting software appli-              appropriation consistently throughout its\ncation that is used for the budget planning and          availability, unless the statutory language\nformulation process and for developing the               clearly demonstrates Congressional intent to\nannual operating budget, and (2) Momentum,               make one appropriation available to supple-\nthe SEC\xe2\x80\x99s core \xef\xac\x81nancial system of record,                ment or increase a different appropriation for\nwhich is used to record all the SEC\xe2\x80\x99s budget             the same type of work. We found no express\nexecution and accounting transactions.                   language in the act containing the supplemen-\n                                                         tal appropriation that clearly demonstrated\n    Although the SEC budget process consists             Congressional intent to have both appropria-\nof formulation, submission, approval, execu-             tions available for the same type of work. As a\ntion, and reporting, the focus of our audit was          result of the SEC\xe2\x80\x99s failure to select and use\nthe budget execution process, which includes             one appropriation consistently, the SEC may\nthe enactment of an appropriation, obtaining             have violated the Purpose Statute during the\nthe OMB\xe2\x80\x99s approval of an apportionment (i.e.,            period when the supplemental appropriation\na plan to spend resources that identi\xef\xac\x81es                 was available for obligation. In addition, we\namounts legally available for obligations and            determined that the SEC may have violated\nexpenditures), and making allocations and                the Antide\xef\xac\x81ciency Act, 31 U.S.C. \xc2\xa7 1341(a), as\nsuballocations to the SEC\xe2\x80\x99s various of\xef\xac\x81ces and           the supplemental appropriation no longer had\ndivisions. After apportionment, OFM staff                suf\xef\xac\x81cient funds to accommodate adjustment of\nload the funding allocations as re\xef\xac\x82ected in              the potential Purpose Statute violation. We\nBPPAS to Momentum, and these amounts are                 consulted with the GAO and were advised\nthen available for commitment and obliga-                that a formal opinion was appropriate to re-\ntions.                                                   solve the matter.\n\n    The overall objective of the audit was to                The audit also found that an OFM staff\ndetermine whether suf\xef\xac\x81cient management                   member inactivated the Momentum \xef\xac\x81nancial\ncontrols over the SEC\xe2\x80\x99s budget execution                 system budgetary controls to facilitate the\nprocess were in place and operating effectively.         processing of payroll transactions without\n\n                                                   35\n\n\x0cauthorization from senior or executive man-           priations Act reprogramming thresholds dur-\nagement. The inactivation of Momentum                 ing the year of execution.\nbudgetary controls allowed the sum of the al-\nlocation amounts issued in FY 2010 to exceed              Recommendations\nthe FY 2010 apportionment. We determined\nthat the SEC\xe2\x80\x99s allocations exceeding the ap-              On March 29, 2011, the OIG issued a \xef\xac\x81-\nportionment was contrary to both OMB guid-            nal report containing the result of its audit.\nance and the SEC\xe2\x80\x99s internal regulations, and          The report included the following nine rec-\nthat the inactivation of budget controls by           ommendations to OFM that were designed to\nOFM staff could lead to a violation of the An-        address vulnerabilities identi\xef\xac\x81ed in the audit:\ntide\xef\xac\x81ciency Act, 31 U.S.C. \xc2\xa7 1517(a).\n                                                          (1)\t   In consultation with OGC, request a\n     Further, the audit found that the BPPAS                     formal opinion from the Comptroller\nsystem is con\xef\xac\x81gured to track only one appro-                     General as to whether the SEC vio-\npriation symbol. As a result, the SEC does                       lated the Purpose Statute and, as a\nnot have full visibility of its budgetary author-                consequence the Antide\xef\xac\x81ciency Act,\nity and the purposes for which it is used. In                    by charging certain costs of informa-\nan environment of multiple appropriations, as                    tion technology projects and expert\nwill be the case in FY 2012 with the estab-                      witness fees to both the general and\nlishment of the SEC reserve fund appropria-                      supplemental appropriations.\ntion established under the Dodd-Frank Wall\nStreet Reform and Consumer Protection Act,                (2)\t   In consultation with OED and\nthe SEC needs to have BPPAS con\xef\xac\x81gured to                         OGC, establish policies and guid-\naccept more than one appropriation to avoid                      ance on how to fund expenditures\nan increased level of manual override activity                   where there are multiple appropria-\nand mitigate the increased effort required to                    tions available for the same purpose.\nsupport additional Congressional reporting\nrequirements. In the absence of full visibility           (3)\t   Complete a risk reassessment and\nof purpose and use of funds, the SEC may be                      include the inactivation of Momen-\nat risk of future Purpose Statute and Antide\xef\xac\x81-                   tum budget controls as a high-risk\nciency Act violations related to multiple ap-                    area in the OFM Reference Guide\npropriations.                                                    01-06, \xe2\x80\x9cGeneral Guidance: Over-\n                                                                 ride of Internal Control.\xe2\x80\x9d\n    The audit also found that OFM does not\nhave a formal budgetary training program to               (4)\t   Revise the Internal Control Override\nensure that its personnel with budgetary re-                     Template included in OFM Refer-\nsponsibilities are appropriately trained and are                 ence Guide 01-06, \xe2\x80\x9cGeneral Guid-\naware of the requirements associated with                        ance: Override of Internal Con-\ntheir job functions. In addition, the audit                      trol,\xe2\x80\x9d to include a section for follow-\nidenti\xef\xac\x81ed a de\xef\xac\x81ciency in the design of internal                  up actions to ensure \xef\xac\x81nancial integ-\ncontrols in that OFM does not require written                    rity or statutory compliance and en-\nauthorization of reprogramming and rea-                          sure that signi\xef\xac\x81cant overriding of\nlignment actions between two-digit Budget                        \xef\xac\x81nancial controls be required to be\nObject Classes. Further, OFM\xe2\x80\x99s reprogram-                        approved by senior-level of\xef\xac\x81cials.\nming and realignment actions are subject to a\ndiminished audit trail and a lack of timely               (5)\t   Formally document its allotments as\nmonitoring throughout the year of budget                         required by Appendix H of OMB\nexecution. As a result, the SEC has an in-                       Circular A-11 to evidence the trans-\ncreased risk of exceeding established Appro-                     fer of legal responsibility for funds to\n                                                                 the recipient.\n                                                    36\n\n\x0c   (6)\t   Initiate a review of the BPPAS capa-               The OIG contracted with Regis and Asso-\n          bility to accommodate multiple ap-             ciates, PC (Regis), an independent public ac-\n          propriations.                                  counting \xef\xac\x81rm, to review select time-and-\n                                                         materials and labor-hour contracts to deter-\n   (7)\t   In consultation with OHR, develop              mine whether payments on the contractor in-\n          and establish a formal, ongoing                voices were properly supported and whether\n          SEC-focused budgetary training                 the goods and services provided conformed to\n          program.                                       contractual requirements. The speci\xef\xac\x81c objec-\n                                                         tives of the review were to determine whether:\n   (8)\t   Revise the current reprogramming\n          and realignment procedures to re-                 (1)\t    The quali\xef\xac\x81cations of employees\n          quire that the Budget Of\xef\xac\x81cer or the                       billed to the contracts, by labor cate-\n          Assistant Director, Planning and                          gory, met the contractual quali\xef\xac\x81ca-\n          Budget, approve all reprogramming                         tion requirements for the positions.\n          and realignment actions that cross\n          two-digit Budget Object Classes in                (2)\t    Assigned Contracting Of\xef\xac\x81cer\xe2\x80\x99s\n          writing.                                                  Technical Representatives (COTR)\n                                                                    properly reviewed contractors\xe2\x80\x99 in-\n   (9)\t   Establish a process to suf\xef\xac\x81ciently and                    voices, corresponding timesheets,\n          accurately track reprogramming and                        and other necessary supporting\n          realignment activities in one central                     documentation to ensure that costs\n          location.                                                 were allowable, reasonable, and al-\n                                                                    locable to the contracts, and that the\n    Management fully concurred with all of the                      rates and amounts billed did not ex-\nOIG\xe2\x80\x99s recommendations and has initiated ac-                         ceed contract rates and ceiling\ntion to address the issues described in the re-                     amounts.\nport. The OIG\xe2\x80\x99s report, Audit of the SEC Budget\nExecution Cycle, is available on our website at             (3)\t    The SEC adequately monitored all\nhttp://www.sec-oig.gov/Reports/AuditsInspe                          aspects of current and past contrac-\nctions/2011/488.pdf.                                                tors\xe2\x80\x99 performance to ensure that\n                                                                    goods and services provided con-\nReview of Time-And-Materials and                                    formed to contractual requirements.\nLabor-Hour Contracts (Report No. 487)\n                                                             Regis reviewed the following two con-\n  Background                                             tracts:\n     The Of\xef\xac\x81ce of Acquisitions in the SEC\xe2\x80\x99s                        \xe2\x80\xa2\t SEC Contract No. SECHQ1-06-\nOAS is responsible for the Commission\xe2\x80\x99s con-\n                                                                      C-0436, a time-and-materials con-\ntract and procurement activities and processes,\n                                                                      tract awarded to XBRL US, Inc.\nwhich are governed by the Federal Acquisition\nRegulation (FAR). While OA oversees the                            \xe2\x80\xa2\t SEC Contract No. SECHQ1-07-\nprocurement responsibilities, the SEC divi-                           C-0313, a labor-hour contract\nsions and of\xef\xac\x81ces are responsible for preparing                        awarded to Dozier Technologies,\ninitial procurement requisitions and state-                           Inc.\nments of work. OA consists of four primary\nbranches, each led by a branch chief and                     The SEC awarded Contract Number\nstaffed with contracting of\xef\xac\x81cers, contract spe-          SECHQ1-06-C-0436 to XBRL US, Inc., to\ncialists, and contractor support personnel.              develop a U.S. Generally Accepted Account-\n                                                         ing Principles Financial Statement Taxonomy,\n\n\n                                                   37\n\n\x0cas well as other deliverables described in the      review process for accepting contract deliver-\ncontract. The principal purpose of the tax-         ables, valued in excess of $11 million.\nonomy is to provide a basis for public compa-\nnies to report their \xef\xac\x81nancial information in an          The review also found that the XBRL US,\ninteractive data format. The SEC awarded            Inc., contract was managed daily by an SEC\nthis time-and-materials contract on March 5,        employee who did not have the requisite con-\n2007, and issued six modi\xef\xac\x81cations that ex-          tract training. We found that the Contracting\ntended the performance period of the con-           Of\xef\xac\x81cer appointed an SEC employee as the\ntract through June 28, 2008, and increased the      TPOC for the contract, who essentially served\ncontract amount from $5,905,420 to                  as an Inspection and Acceptance Of\xef\xac\x81cial. No\n$11,889,462.                                        COTR was appointed, even though the con-\n                                                    tract was (1) highly technical, (2) a time-and-\n    The SEC awarded Contract Number                 materials contract requiring monitoring of\nSECHQ1-07-C-0313 to Dozier Technologies,            hours and approval of other direct costs, in-\nInc., on September 7, 2007. The contract            cluding travel, and (3) valued at almost $6 mil-\nhad a base value of approximately                   lion at the time of award. Additionally, we\n$1,525,157, with options to increase the value      found that the TPOC performed COTR-type\nto $3,500,000. The purpose of this labor-           duties, such as overseeing the contract on a\nhour contract was to provide contracting sup-       daily basis by providing guidance and direc-\nport services and to assist in the administra-      tion to the contractor, and approving monthly\ntion of a new procurement system. The SEC           invoices. Without proper training, an individ-\nexercised the options in the form of 15 modi-       ual assisting the Contracting Of\xef\xac\x81cer in man-\n\xef\xac\x81cations to the full value of $3,500,000.           aging a complex contract may not be aware of\n                                                    all the requirements he or she is obligated to\n  Results                                           follow. As a result, there is a signi\xef\xac\x81cant risk\n                                                    that the Commission\xe2\x80\x99s policies and procedures\n    The review identi\xef\xac\x81ed a number of de\xef\xac\x81-           may not be followed and that value may not\nciencies concerning the contracts reviewed          have been received for services provided.\nrelated to documentation, the quali\xef\xac\x81cations of\nSEC staff responsible for the day-to-day over-          For the Dozier Technologies, Inc., con-\nsight of the XBRL US, Inc. contract, and in-        tract, the review found inconsistent documen-\nclusion of labor category quali\xef\xac\x81cations in the      tation support for various invoices, including\nXBRL US, Inc., contract. These controls             eight invoices totaling approximately $156,532\nhelp to ensure that the government\xe2\x80\x99s surveil-       that appeared unsupported by timekeeping\nlance of contractor performance provides rea-       records or similar documentation. Two of the\nsonable assurance that ef\xef\xac\x81cient methods and         invoices submitted by the contractor, totaling\neffective cost controls are being used in time-     approximately $12,398, contained no support-\nand-materials and labor-hour contracts.             ing documentation other than summary in-\n                                                    formation on the invoice stating the labor\n    The review found that the acceptance of         category, labor rate, and total hours billed.\ndeliverables was not adequately documented.         The other six invoices could only be substanti-\nAlthough the assigned Technical Point of            ated with sign-in sheets provided by OAS for\nContact (TPOC) for the XBRL US, Inc., con-          some of the billed labor amounts. The sup-\ntract stated that a panel comprised of indi-        porting documentation for these eight invoices\nviduals from the Division of Corporation Fi-        did not contain the same level of support as\nnance, the Of\xef\xac\x81ce of the Chief Accountant,           the other invoices submitted for this contract\nand OIT reviewed and accepted or rejected           by the contractor. Accordingly, the OIG iden-\ndeliverables for the contract, the TPOC could       ti\xef\xac\x81ed questioned costs of $156,532 as a result\nnot provide documentation to substantiate this      of this review.\n\n                                                  38\n\n\x0c      Additionally, the XBRL US, Inc., contract                      whether deliverables met applicable\ndid not include the quali\xef\xac\x81cations for labor                          criteria and quality standards in the\ncategories that were charged to the contract,                        contract.\nas required by the FAR. We found that the\nSEC did not include in the terms of the con-                  (2)\t   Revise or update the appropriate\ntract quali\xef\xac\x81cations for the labor categories                         SEC regulations to explicitly require\nupon which hourly charges would be based                             use of a standardized inspection and\n(e.g., Taxonomist I, Architect I, Subject Matter                     acceptance form or similar medium\nExpert, Project Support Specialist). In Febru-                       for all deliverables.\nary 2007, FAR Section 16.6, \xe2\x80\x9cTime-and-\nMaterials and Labor-Hour Contracts,\xe2\x80\x9d ex-                      (3)\t   Review active contracts to ensure\npanded the de\xef\xac\x81nition of \xe2\x80\x9chourly rate\xe2\x80\x9d to the                         agency contracts are appropriately\n\xe2\x80\x9crate(s) prescribed in the contract for payment                      assigned a COTR or Inspection and\nof labor that meets the labor category quali\xef\xac\x81-                       Acceptance Of\xef\xac\x81cial.\ncations . . . .\xe2\x80\x9d Additionally, FAR \xc2\xa7 52.232-7,\n\xe2\x80\x9cPayments under Time-and-Materials and                        (4)\t   Issue guidance within one month of\nLabor-Hour Contracts,\xe2\x80\x9d which was incorpo-                            the issuance of the \xef\xac\x81nal report to the\nrated by reference in the contract, states in                        acquisition staff and approving of\xef\xac\x81-\npart that \xe2\x80\x9cthe Contractor shall substantiate                         cials, such as COTRs and Inspection\nvouchers (including any subcontractor hours                          and Acceptance Of\xef\xac\x81cials, regarding\nreimbursed at the hourly rate in the schedule)                       the proper procedures for review,\nby evidence of actual payment and by . . .                           approval, and documentation of\n[r]ecords that verify the employees meet the                         contractor payments for time-and-\nquali\xef\xac\x81cations for the labor categories speci\xef\xac\x81ed                      materials and labor-hour contracts.\nin the contract . . . .\xe2\x80\x9d Within the \xef\xac\x81rst seven\nmonths of the contract, the SEC executed                      (5)\t   Review, in consultation with OFM,\nthree modi\xef\xac\x81cations, which increased the                              the $156,532 in unsupported pay-\nnumber of labor categories from 11 to 23 and                         ments made to Dozier Technologies,\nthe funding from $5,905,420 to $11,889,461.                          Inc., to determine what, if any, cor-\nThese modi\xef\xac\x81cations did not include the speci-                        rective actions are warranted (e.g.,\n\xef\xac\x81cations for additional labor categories.                            requiring the contractor to provide\n                                                                     adequate support, refund monies for\n  Recommendations                                                    unsupported costs).\n\n     On December 22, 2010, the OIG issued                     (6)\t   Ensure that all future time-and-\nits \xef\xac\x81nal report containing the results of its re-                    materials and labor-hour contracts\nview. The report included the following six                          contain applicable labor category\nrecommendations to OA that were designed                             quali\xef\xac\x81cations in accordance with the\nto improve OA\xe2\x80\x99s management of time-and-                              FAR.\nmaterials and labor-hour contracts:\n                                                              Management fully concurred with all six\n    (1)\t   Develop a standardized inspection              recommendations and has begun to take appro-\n           and acceptance form or similar me-             priate steps to implement them. The OIG\xe2\x80\x99s re-\n           dium to document the acceptance of             port, Review of Select Time-and-Materials and Labor-\n           goods and services for all deliver-            Hour Contracts, is available on our website at\n           ables, and include in such documen-            http://www.sec-oig.gov/Reports/AuditsInspe\n           tation information regarding who               ctions/2010/487-Final.pdf.\n           accepted the deliverables and\n\n\n\n                                                    39\n\n\x0c2010 Annual FISMA Executive                             \xe2\x80\xa2\t The Commission has developed a Cer-\nSummary Report (Report No. 489)                            ti\xef\xac\x81cation and Accreditation (C&A)\n                                                           program that is compliant with appli-\n    The OIG contracted the services of C5i                 cable regulatory and statutory re-\nFederal, Inc. (C5i), to assist with the comple-            quirements. However, as noted in\ntion and coordination of the OIG\xe2\x80\x99s input to                OIG Report No. 485, Assessment of the\nthe Commission\xe2\x80\x99s response to OMB Memo-                     SEC\xe2\x80\x99s Privacy Program, issued on Sep-\nrandum M-10-15, FY 2010 Reporting In-                      tember 29, 2010, OIT\xe2\x80\x99s categorization\nstructions for the Federal Information Security            of network vulnerabilities may impact\nManagement Act and Agency Privacy Man-                     the C&A process, and OIT is reevalu-\nagement. The OMB memorandum provided                       ating its risk categorization process.\ninstructions and templates for meeting the FY\n2010 reporting requirements under the Fed-              \xe2\x80\xa2\t The SEC has a Security Con\xef\xac\x81guration\neral Information Security Management Act of                Management program that has poli-\n2002 (FISMA). It also included instructions                cies and procedures, baselines, and an\nfor reporting on the agency\xe2\x80\x99s privacy man-                 inventory of software and hardware.\nagement program.                                           However, as also noted in OIG Report\n                                                           No. 485, OIT has not fully imple-\n    FISMA provides the framework for secur-                mented the Federal Desktop Core\ning the federal government\xe2\x80\x99s information                   Con\xef\xac\x81guration, exceptions have not\ntechnology resources. All federal agencies                 been reported to the National Institute\nmust implement the requirements of FISMA                   of Standards and Technology (NIST),\nand report annually to OMB and Congress on                 and justi\xef\xac\x81cations for identi\xef\xac\x81ed \xe2\x80\x9cexcep-\nthe effectiveness of their information security            tions\xe2\x80\x9d have not been fully docu-\nand privacy programs. OMB uses the re-                     mented.\nported information to evaluate agency-speci\xef\xac\x81c\nand government wide privacy program per-                \xe2\x80\xa2\t OIT has an Incident Response and\nformance, develop OMB\xe2\x80\x99s annual security re-                Reporting Program with documented\nport to Congress, assist in improving and                  policies and procedures, detailing SEC\nmaintaining adequate agency security and                   employee and contractor roles and re-\nprivacy performance, and assist in the devel-              sponsibilities in reporting and respond-\nopment of the E-Government scorecard un-                   ing to incidents.\nder the President\xe2\x80\x99s Management Agenda.\n                                                        \xe2\x80\xa2\t Annual Security Awareness Training\n    C5i began work on this project in Sep-                 was provided to all SEC employees\ntember 2010. The overall objective of the                  and contractors. As of November 15,\nOIG\xe2\x80\x99s FISMA assessment was to independ-                    2010, 4,732 of 4,778 SEC employees\nently evaluate and report on how the Com-                  and contractors (99.04 percent) suc-\nmission has implemented its mandated infor-                cessfully completed this training.\nmation security requirements. The assessment\nwas also designed to provide background in-             \xe2\x80\xa2\t OIT maintains a Plan of Actions and\nformation, clari\xef\xac\x81cation, and recommendations               Milestones (POA&M) process that de-\nfor the OIG\xe2\x80\x99s response and input to the OMB                tails the vulnerability, associated NIST\nreporting template for FISMA.                              controls, remediation/mitigation strat-\n                                                           egy, risk level, and projected/planned\n  Results                                                  remediation date. The POA&M is re-\n                                                           viewed and updated quarterly and\n     The OIG\xe2\x80\x99s FISMA assessment found the\n                                                           tracked using the Cyber Security As-\nfollowing:\n                                                           sessment and Management tool.\n\n                                                  40\n\n\x0c\xe2\x80\xa2\t The SEC has a Remote Access Pro-                     Recommendations\n   gram that complies with federal guid-\n   ance and employs security measures                     On March 3, 2011, the OIG issued a \xef\xac\x81nal\n   such as a two-factor authentication                report containing the results of its assessment.\n   requirement consisting of an account               The report included the following eight rec-\n   password and an RSA token with a                   ommendations that were designed to address\n   personal identi\xef\xac\x81cation number.                     vulnerabilities identi\xef\xac\x81ed in our assessment:\n\n\xe2\x80\xa2\t The SEC has an Account and Identity                   (1)\t   OIT should identify all exceptions to\n   Management Program with policies                             the Federal Desktop Core Con\xef\xac\x81gura-\n   and procedures for both establishing                         tion standards and submit them to\n   and deactivating physical and logical                        NIST within 90 days of the issuance\n   (network) accounts. However, the                             date of the OIG\xe2\x80\x99s FISMA report.\n   HSPD-12 card program completion\n   date was delayed for both physical ac-                (2)\t   OIT should ensure that justi\xef\xac\x81cations\n   cess and logical access. Additionally,                       for deviations from Federal Desktop\n   OIT has not effectively applied \xe2\x80\x9cleast                       Core Con\xef\xac\x81guration requirements\n   privilege\xe2\x80\x9d for network accounts (i.e.,                       are fully documented.\n   allowing only access required to per-\n   form the user\xe2\x80\x99s required functions) for               (3)\t   OIT should:\n   certain network accounts that provided\n   the user with the ability to install soft-                   (a)\t\t perform a thorough review and\n   ware and change mandatory settings.                                identify the universe of all\n                                                                      Commission user accounts;\n\xe2\x80\xa2\t The SEC has a Continuous Monitor-                            (b)\t\t once the universe has been\n   ing Program that includes vulnerability                            identi\xef\xac\x81ed, identify all active\n   scanning, patch management policies                                and inactive user accounts and\n   and procedures, and ongoing assess-                                determine whether any ac-\n   ment of security controls. However, as                             counts should be disabled; and\n   noted in OIG Report No. 485, a prob-                         (c)\t\t take immediate action to dis-\n   lem exists with the timely implementa-                             able the accounts of employees\n   tion of new patches. Further, OIT                                  and contractors who no longer\n   maintains insuf\xef\xac\x81cient documentation                                work at the Commission.\n   on which patches have been deployed\n   and the date of deployment.                           (4)\t   OIT should review its policies and\n                                                                procedures for disabling accounts to\n\xe2\x80\xa2\t The SEC has a Contingency Planning                           ensure that they are well-\n   Program with documented policies                             documented and thorough, and\n   and procedures. Contingency plan                             should provide training to appropri-\n   testing is performed biannually, in                          ate staff regarding account termina-\n   April and November, and \xe2\x80\x9clessons                             tion procedures.\n   learned\xe2\x80\x9d from the testing exercises are\n   developed and addressed.                              (5)\t   OIT should complete the logical ac-\n                                                                cess integration of the HSPD-12\n\xe2\x80\xa2\t The SEC has a Contractor Oversight                           card program no later than Decem-\n   Program, as well as documented poli-                         ber 2011, as it reported to OMB on\n   cies and procedures utilizing adequate                       December 31, 2010.\n   security controls in accordance with\n   NIST and OMB guidance.\n\n                                                41\n\n\x0c   (6)\t   OIT should conduct a full review,           delegated authority. Additionally, the SEC\n          and identify the universe, of all users     staff may provide relief to \xef\xac\x81rms in the form of\n          with elevated privileges.                   a \xe2\x80\x9cno-action\xe2\x80\x9d letter. A staff no-action letter\n                                                      includes the speci\xef\xac\x81c representations made in a\n   (7)\t   Based on the review results of Rec-         \xef\xac\x81rm\xe2\x80\x99s request, and advises the \xef\xac\x81rm that if it\n          ommendation 6, OIT should enforce           proceeds as described in the request for no-\n          or develop procedures to ensure that:       action relief, the SEC staff will not recom-\n                                                      mend an enforcement action against the \xef\xac\x81rm.\n          (a)\t\t only users whose job functions        Exemptive orders and no-action letters pro-\n                require permanent elevated            vide the industry with the \xef\xac\x82exibility to intro-\n                access have the needed privi-         duce new and novel products and services to\n                leges;                                the securities markets without risking an SEC\n          (b)\t\t business justi\xef\xac\x81cations are fully      enforcement action for violating the securities\n                documented; and                       laws.\n          (c)\t\t elevated privileges are only is-\n                sued for the \xef\xac\x81nite amount of              The OIG is performing an audit to evalu-\n                time needed to complete an            ate the SEC\xe2\x80\x99s processes for ensuring adher-\n                assigned task.                        ence to the conditions under which exemptive\n                                                      orders are granted and the representations\n   (8)\t   OIT should establish and maintain           based upon which no-action letters are issued.\n          an accurate and current list of all         In this audit, the OIG will assess the applica-\n          users who have elevated privileges.         ble SEC policies, procedures and processes\n                                                      and make recommendations for improvement,\n    Management fully concurred with all eight         as warranted. The OIG will also interview\nrecommendations and has initiated actions to          SEC managers and staff involved in the ex-\naddress the issues described in the report. The       emptive order and no-action letter processes,\nOIG\xe2\x80\x99s report, 2010 Annual FISMA Executive             which primarily include staff in the Divisions\nSummary Report, is available on our website at        of Investment Management, Corporation Fi-\nhttp://www.sec-oig.gov/Reports/AuditsInspe            nance, and Trading and Markets. In addition,\nctions/2011/489.pdf.                                  the OIG will conduct a review of relevant\n                                                      documents and analyze pertinent data in or-\n                                                      der to determine whether applicants are com-\nPENDING AUDITS AND EVALUATIONS                        plying with the conditions and representations\n                                                      in the exemptive orders and no-action letters\nOversight of and Compliance with                      that have been granted or issued.\nConditions and Representations\nRelated to Exemptive Orders and\nNo-Action Letters                                     Audit of Alternative Work\n                                                      Arrangements, Overtime\n                                                      Compensation, and the COOP\n    The SEC has authority to provide \xef\xac\x81rms             Program at the SEC\nwith exemptions to the requirements of the\nfederal securities laws through the issuance of           The U.S. Of\xef\xac\x81ce of Personnel Manage-\nexemptive orders. Firms request exemptions            ment (OPM) has recognized the importance of\nfrom the SEC for proposed transactions,               alternative and \xef\xac\x82exible work schedules in the\nproducts, or services that might not comply           federal government. Speci\xef\xac\x81cally, OPM\xe2\x80\x99s\nwith current securities law requirements. If          Handbook on Alternative Work Schedules\nthe SEC grants an application for an exemp-           (AWS) provides that \xe2\x80\x9cAWS programs have the\ntion, the requestor must adhere to the condi-         potential to enable managers and supervisors\ntions of the exemptive order issued by the            to meet their program goals while, at the same\nCommission, or a division acting pursuant to          time, allowing employees to be more \xef\xac\x82exible\n\n                                                    42\n\n\x0cin scheduling their personal activities. As em-     recognize employee contributions above and\nployees gain greater control over their time,       beyond normal job requirements with mone-\nthey can, for example, balance work and fam-        tary and non-monetary awards. Awards may\nily responsibilities more easily, become in-        be granted for contributions either within or\nvolved in volunteer activities, and take advan-     outside of the employee\xe2\x80\x99s job responsibilities;\ntage of educational opportunities. The em-          however, if the contribution is within the em-\nployee bene\xef\xac\x81ts provided by AWS programs             ployee\xe2\x80\x99s job responsibilities, the contribution\nalso are useful recruitment and retention           must be so superior or meritorious that it war-\ntools.\xe2\x80\x9d In addition, Section 622 of the Con-        rants special recognition. The SEC also pro-\nsolidated Appropriations Act of 2005, Public        vides recruitment, relocation, and retention\nLaw 108-447, required the SEC, not later            incentives to its employees that are based on\nthan two months after the date of the enact-        the \xe2\x80\x9cbest interest\xe2\x80\x9d of the SEC. The SEC\xe2\x80\x99s\nment of the Act, to certify that telecommuting      OHR is responsible for ensuring the integrity\nopportunities are made available to 100 per-        of awards and incentives that are provided to\ncent of the eligible workforce. The Act fur-        SEC employees.\nther provided that the agency shall designate a\ntelework coordinator to be responsible for              The SEC OIG is performing an audit of\noverseeing the implementation and operations        the ERP and retention, relocation, and re-\nof telecommuting programs, and serve as a           cruitment incentive programs to determine\npoint of contact on such programs for the U.S.      whether awards and incentives were made in\nSenate and House of Representatives Com-            accordance with applicable governing policies\nmittees on Appropriations. More recently, the       and procedures. Additionally, the SEC OIG\nTelework Enhancement Act of 2010, Public            will examine whether awards and incentives\nLaw 111-292, was enacted on December 9,             are linked to the SEC\xe2\x80\x99s human capital and\n2010, providing a framework for agencies to         succession plans, as applicable.\nbetter leverage technology and maximize the\nuse of \xef\xac\x82exible work arrangements.                   2010 Federal Information Security\n                                                    Management Act Assessments\n     The OIG is conducting an audit of the\nSEC\xe2\x80\x99s AWS and telework programs. The                     As part of the OIG\xe2\x80\x99s FISMA assessment,\nOIG is also reviewing the SEC\xe2\x80\x99s Continuity of       we contracted with an outside consultant to\nOperations Plan (COOP), remote access ca-           conduct assessments of two major SEC in-\npabilities, and overtime compensation prac-         formation technology security components:\ntices as they relate to AWS and telework.           (1) the SEC\xe2\x80\x99s continuous monitoring efforts for\nSpeci\xef\xac\x81cally, the OIG will examine the SEC\xe2\x80\x99s         its information technology operations, and (2)\n(1) implementation and oversight of its AWS         the SEC\xe2\x80\x99s oversight of contractors\xe2\x80\x99 handling\nand telework programs, (2) compliance with          of SEC Personally Identi\xef\xac\x81able Information.\xc2\xa0\napplicable federal laws and SEC policies and\nprocedures pertaining to AWS, telework, and             The assessment of the SEC\xe2\x80\x99s continuous\novertime, and (3) information technology ca-        monitoring efforts will identify strengths and\npabilities and access support for the telework      weaknesses in that program.\xc2\xa0 The assessment\nand COOP programs.                                  of the SEC\xe2\x80\x99s oversight of contractors\xe2\x80\x99 han-\n                                                    dling of SEC Personally Identi\xef\xac\x81able Informa-\nAudit of the SEC\xe2\x80\x99s Employee                         tion will determine whether SEC contracts\nRecognition Program and Retention,                  with third-party vendors contain appropriate\nRelocation, and Recruitment                         language addressing requirements of the Pri-\nIncentives                                          vacy Act of 1974 pertaining to protection of\n                                                    Personally Identi\xef\xac\x81able Information. \xc2\xa0\n   The SEC employee recognition program\n(ERP) is designed to motivate employees and\n\n                                                  43\n\n\x0c44\n\x0cU.S. Securities and Exchange Commission\n\n\n                                                                        SEMIANNUAL\n                                                                        REPORT TO\n                                                                        CONGRESS\n                                                 Of\xef\xac\x81ce of\n                                                Inspector\n                                                 General\n\n\n\n\n                                           INVESTIGATIONS\n                                           OVERVIEW                                             ganizational impairments; (d) procedures and\n                                                                                                criteria for initiating an investigation or pre-\n                                               The OIG\xe2\x80\x99s Of\xef\xac\x81ce of Investigations re-            liminary inquiry; (e) conducting investigations\n                                           sponds to allegations of violations of statutes,     and preliminary inquiries, including initial in-\n                                           rules, and regulations, and other misconduct         vestigative steps, scheduling and conducting\n                                           by SEC staff and contractors. The miscon-            testimony and interviews, applicable warnings\n                                           duct investigated ranges from criminal wrong-        and rights, protecting nonpublic information\n                                           doing and fraud to violations of SEC rules           in testimony and interviews, and witness re-\n                                           and policies and the government-wide stan-           quests for con\xef\xac\x81dentiality; (f) case reviews; (g)\n                                           dards of ethical conduct.                            procedures for coordination with the U.S. De-\n                                                                                                partment of Justice (DOJ), when appropriate;\n                                                The Of\xef\xac\x81ce of Investigations conducts            (h) safeguarding grand jury information; (i)\n                                           thorough and independent investigations into         issuing reports of investigation; (j) guidelines\n                                           allegations received in accordance with the          for closing preliminary inquiries; (k) maintain-\n                                           Quality Standards for Investigations of the          ing administrative \xef\xac\x81les; and (l) requests for in-\n                                           Council of the Inspectors General on Integrity       formation from persons outside the SEC.\n                                           and Ef\xef\xac\x81ciency (CIGIE). During this reporting\n                                           period, the Of\xef\xac\x81ce of Investigations issued a             The OIG receives complaints through the\n                                           new Investigations Manual that governs the           OIG Complaint Hotline, an of\xef\xac\x81ce electronic\n                                           procedures by which the OIG conducts its in-         mailbox, mail, facsimile, and telephone. The\n                                           vestigations and preliminary inquiries and im-       OIG Complaint Hotline consists of both tele-\n                                           plements the CIGIE\xe2\x80\x99s Quality Standards. The          phone and web-based complaint mechanisms.\n                                           Investigations Manual addresses the following        Complaints may be made anonymously by\n                                           areas: (a) authority and general policy of the       calling the Hotline, which is staffed and an-\n                                           OIG; (b) requisite quali\xef\xac\x81cations for the OIG\xe2\x80\x99s       swered 24 hours a day, seven days a week.\n                                           investigators, including education and experi-       Complaints may also be made to the Hotline\n                                           ence, character, physical capabilities and \xef\xac\x81t-       through an online complaint form, which is\n                                           ness program, age, knowledge, skills and abili-      accessible through the OIG\xe2\x80\x99s website. In addi-\n                                           ties, entry-level and in-service training, and       tion to a mechanism for the receipt of com-\n                                           professional development; (c) independence of        plaints, the OIG\xe2\x80\x99s website also provides the\n                                           the OIG\xe2\x80\x99s investigators and investigations, in-      public with an overview of the work of the\n                                           cluding managing personal, external, and or-         Of\xef\xac\x81ce of Investigations, as well as links to\n                                                                                              45\n\n\x0csome investigative memoranda and reports              Commission\xe2\x80\x99s Ethics Counsel to coordinate\nissued by the Of\xef\xac\x81ce. The OIG also receives            activities.\nallegations from SEC employees of waste,\nabuse, misconduct, or mismanagement within                 Upon completion of an investigation, the\nthe Commission through the OIG SEC Em-                OIG investigator prepares a comprehensive\nployee Suggestion Hotline, which was estab-           report of investigation that sets forth in detail\nlished pursuant to Section 966 of the Dodd-           the evidence obtained during the investiga-\nFrank Wall Street Reform and Consumer Pro-            tion. Investigative matters are referred to the\ntection Act and is described in the OIG SEC           DOJ and SEC management as appropriate.\nEmployee Suggestion Hotline Section of this           The OIG does not publicly release its reports\nReport.                                               of investigation because they contain nonpub-\n                                                      lic information. Decisions regarding whether\n    The OIG reviews and analyzes all com-             an OIG investigative report should be publicly\nplaints received to determine the appropriate         released, in response to a Freedom of Infor-\ncourse of action. In instances where it is de-        mation Act request or otherwise, are made by\ntermined that something less than a full inves-       the agency.\ntigation is appropriate, the OIG may conduct\na preliminary inquiry into the allegation. If              In many investigative reports provided to\nthe information obtained during the inquiry           SEC management, the OIG makes speci\xef\xac\x81c\nindicates that a full investigation is warranted,     \xef\xac\x81ndings and recommendations, including\nthe Of\xef\xac\x81ce of Investigations will commence an          whether the OIG believes disciplinary, or\ninvestigation of the allegation. Upon the             other action, should be taken. The OIG re-\nopening of an investigation, the primary OIG          quests that management report back discipli-\ninvestigator assigned to the case prepares a          nary or other actions taken in response to the\ncomprehensive plan of investigation that de-          OIG\xe2\x80\x99s recommendations within 45 days of the\nscribes the focus and scope of the investiga-         issuance of the report. The OIG follows up\ntion, as well as the speci\xef\xac\x81c investigative steps      as appropriate with management to determine\nto be performed during the investigation. The         the status of disciplinary action in matters re-\nOIG investigator interviews the complainant           ferred by the OIG. The OIG also often\nwhenever feasible and conducts signi\xef\xac\x81cant             makes recommendations for improvements in\ninterviews under oath and on-the-record. In           policies, procedures, and internal controls in\ncertain circumstances, the OIG may give as-           its investigative reports, and these recommen-\nsurances of con\xef\xac\x81dentiality to potential wit-          dations are tracked in a manner similar to\nnesses who have expressed a reluctance to             how the OIG tracks its audit recommenda-\ncome forward.                                         tions.\n\n    Where allegations of criminal conduct are\ninvolved, the Of\xef\xac\x81ce of Investigations noti\xef\xac\x81es         INVESTIGATIONS AND INQUIRIES\nand works with the DOJ and the Federal Bu-            CONDUCTED\nreau of Investigation (FBI), as appropriate.\nThe OIG also obtains necessary investigative          Investigation of Failure of an SEC\nassistance from the SEC\xe2\x80\x99s Of\xef\xac\x81ce of Informa-           Regional Office to Uncover Fraud and\n                                                      Inappropriate Conduct on the Part of a\ntion Technology (OIT), including the prompt           Senior-Level Official (Report No.\nretrieval of employee e-mails and forensic            OIG-533)\nanalysis of computer hard drives. The OIG\ninvestigative staff meets with the Inspector              The OIG opened an investigation after\nGeneral frequently to review the progress of          receiving an anonymous complaint on March\nongoing investigations. The OIG investigative         15, 2010, alleging that a senior of\xef\xac\x81cial in the\nstaff also consults as necessary with the             investment adviser examination program in an\n\n                                                    46\n\n\x0cSEC regional of\xef\xac\x81ce \xe2\x80\x9cinstructed (and even bul-           circumventing Regulation T and unusually\nlied) examiners to not pursue certain red \xef\xac\x82ags          high leverage, was highly questionable.\nin [a 2009] examination where the exam staff\nuncovered a massive fraud,\xe2\x80\x9d and that his mo-                In addition, the 2005 examiners made a\ntive was related to his involvement in a previ-         decision before the examination to \xe2\x80\x9cfocus on\nous 2005 examination of the \xef\xac\x81rm. The                    custody issues.\xe2\x80\x9d However, the actual exami-\nanonymous complaint also alleged that the               nation did not include a thorough custody\nsenior of\xef\xac\x81cial lied to OIG investigators during         analysis. In fact, although 80 to 85 percent of\ntestimony given in a previous OIG investiga-            client assets were invested in an af\xef\xac\x81liated\ntion.                                                   broker-dealer, the 2005 examination team\n                                                        made no effort to examine these assets, even\n    The OIG investigated the allegations in             though they admitted that they were \xe2\x80\x9cuncom-\nthe complaint, focusing on the failure of the           fortable\xe2\x80\x9d with the activities at the broker-\nregional of\xef\xac\x81ce to detect the fraud during its           dealer.\n2005 examination. In conducting the investi-\ngation, the OIG searched over 68,000 e-mails                 The 2005 examination team also identi-\nand took the testimony of 17 witnesses who              \xef\xac\x81ed numerous \xe2\x80\x9cred \xef\xac\x82ags\xe2\x80\x9d during the course of\nhad knowledge of the facts and circumstances            the examination, which they noted in their\nsurrounding the matter. The OIG investiga-              examination report, but on which they did not\ntion found that the regional of\xef\xac\x81ce missed a             follow up. One of the most signi\xef\xac\x81cant con-\nsigni\xef\xac\x81cant opportunity to uncover a $554 mil-           cerns the 2005 examination team identi\xef\xac\x81ed\nlion Ponzi scheme, failed to conduct a compe-           related to the poor compliance culture at the\ntent and thorough examination of the invest-            \xef\xac\x81rm. The examination team concluded that\nment adviser in 2005, and did not take the              the \xef\xac\x81rm had \xe2\x80\x9cineffective compliance proce-\nnecessary steps to ensure that a follow-up ex-          dures and practices.\xe2\x80\x9d They also concluded\namination of the adviser\xe2\x80\x99s af\xef\xac\x81liated broker-            that the \xef\xac\x81rm \xe2\x80\x9cdid not consider compliance\ndealer was conducted.                                   with the federal securities laws to be a prior-\n                                                        ity.\xe2\x80\x9d They documented that the \xef\xac\x81rm, a $1.3\n    Speci\xef\xac\x81cally, the OIG investigation found            billion company, had hired a completely inex-\nthat the 2005 examination of the investment             perienced compliance of\xef\xac\x81cer and purportedly\nadviser was \xef\xac\x82awed in numerous respects. We              could not afford compliance seminars. In ad-\nfound that signi\xef\xac\x81cant portions of the \xef\xac\x81eld              dition, the 2005 examination team also found\nwork and the writing of the examination re-             unopened boxes of trade blotters, which were\nport were conducted by a very inexperienced             supposed to have been reviewed by the \xef\xac\x81rm to\nexaminer. We further found that while the               verify the investment strategy their investors\nexamination team became aware of obvious                were utilizing. However, these concerns did\nred \xef\xac\x82ags about the \xef\xac\x81rm\xe2\x80\x99s operations that                not trigger further scrutiny or examination.\nshould have been scrutinized in the examina-\ntion, the examination team failed to follow up              The 2005 examination team also found \xe2\x80\x9ca\non these matters and minimized the concerns             myriad of inaccuracies\xe2\x80\x9d in the \xef\xac\x81rm\xe2\x80\x99s Form\nthey found.                                             ADV. The examination report noted 15 inci-\n                                                        dents of inaccurate or incomplete information\n    The examiners who conducted the 2005                on the Form ADV, including failing to disclose\nexamination acknowledged that the \xef\xac\x81rm\xe2\x80\x99s                 that the \xef\xac\x81rm gave advice on interests in part-\nstructure, in which clients became limited              nerships, which was 80 to 85 percent of the\npartners in the broker-dealer, was a red \xef\xac\x82ag in         \xef\xac\x81rm\xe2\x80\x99s business. However, these inaccuracies\nand of itself, and that the \xef\xac\x81rm\xe2\x80\x99s complex in-           were attributed to the \xef\xac\x81rm\xe2\x80\x99s compliance cul-\nvestment strategy, combined with its goal of            ture, which the examination team dismissed as\n                                                        being merely \xe2\x80\x9csloppy.\xe2\x80\x9d\n\n                                                  47\n\n\x0c    The 2005 examination team also disclosed              2005 examination team noted its intention to\nthat the \xef\xac\x81rm\xe2\x80\x99s marketing materials contained              refer its report for an examination of the\nsigni\xef\xac\x81cant omissions and failed to clearly de-            broker-dealer. However, the OIG found that\nscribe its investment strategy, yet the examiners         the referral never happened. The OIG inves-\ndid not attach signi\xef\xac\x81cance to these \xef\xac\x81ndings.              tigation determined that none of the members\nThe examination team also uncovered that the              of the 2005 examination team could recall ac-\n\xef\xac\x81rm\xe2\x80\x99s stated policy was to delete all e-mails             tually referring the matter, and no one in the\nafter a hardcopy was printed. Although, as a              other regional of\xef\xac\x81ce recalled ever receiving a\nresult, the examination team was unable to                referral. In addition, the OIG, as well as re-\nreview e-mail documentation as part of their              gional of\xef\xac\x81ce staff, conducted numerous e-mail\nexamination, the examiners did not ascribe                searches and the results showed no e-mails be-\nimproper motives to this \xef\xac\x81nding, concluding               tween the two regional of\xef\xac\x81ces regarding the\nthat the \xef\xac\x81rm\xe2\x80\x99s of\xef\xac\x81cials were simply \xe2\x80\x9cnot tech-            \xef\xac\x81rm and no internal e-mails discussing a refer-\nnology savvy.\xe2\x80\x9d                                            ral.\n\n     The OIG investigation further found that                  The OIG investigation further found that,\nafter conducting the examination, the 2005                in the timeframe of the 2005 examination, the\nexamination team actually not only failed to              examining regional of\xef\xac\x81ce had no policies that\nfollow up on obvious red \xef\xac\x82ags but, inexplica-             governed the referral of examination \xef\xac\x81ndings\nbly, decided to lower the \xef\xac\x81rm\xe2\x80\x99s risk rating from          and no instructions on how a referral was to be\nhigh risk to medium risk as a result of their             made. In addition, there was no procedure for\nexamination. The 2005 examination report                  following up on a referral and, in fact, no one\njusti\xef\xac\x81ed the decision to downgrade the \xef\xac\x81rm\xe2\x80\x99s              on the 2005 examination team made any ef-\nrisk rating as follows: \xe2\x80\x9cRegistrant\xe2\x80\x99s investment          fort to con\xef\xac\x81rm that a referral had been made,\nstrategy and implementation of the strategy do            or inquired as to whether the receiving of\xef\xac\x81ce\nnot appear to involve a high degree of risk.\xe2\x80\x9d             received the referral, conducted an examina-\nHowever, the report did not elaborate on this             tion, or found any fraud. Thus, no examina-\ndetermination, and the very same page of the              tion was conducted of the broker-dealer, al-\nreport stated that \xe2\x80\x9cthere are signi\xef\xac\x81cant risks            lowing the fraud to continue.\nassociated with the operations of [the regis-\ntered broker-dealer].\xe2\x80\x9d                                        The OIG found that in 2009, when an ex-\n                                                          perienced examination team conducted a joint\n    Moreover, the OIG investigation found                 examination of both the investment adviser\nthat a brief, cursory review of the \xef\xac\x81rm con-              and the broker-dealer, following up partially\nducted four years later, but which was based              on a referral from another agency, the fraud\nupon information available to the 2005 exam-              was easily uncovered. The examiners ac-\niners, immediately determined that the \xef\xac\x81rm                knowledged that the \xef\xac\x81rms were both operating\nhad numerous, signi\xef\xac\x81cant red \xef\xac\x82ags and risk                in the \xe2\x80\x9cexact same fashion\xe2\x80\x9d in 2009 as they\nfactors that warranted immediate scrutiny and             were in 2005, and the OIG investigation found\nexamination.                                              that when the 2009 examination team fol-\n                                                          lowed up on the same \xe2\x80\x9cred \xef\xac\x82ags\xe2\x80\x9d identi\xef\xac\x81ed in\n    While the 2005 examination team dis-                  2005, the 2009 team immediately discovered\nmissed the red \xef\xac\x82ags relating to the investment            the fraud.\nadviser, they did have enough concerns about\nthe operations at the af\xef\xac\x81liated broker-dealer                Perhaps most signi\xef\xac\x81cantly, the 2009 ex-\nthat they decided to recommend that another               amination team conducted a custody analysis,\nregional of\xef\xac\x81ce conduct a broker-dealer exami-             something that the 2005 team had planned to\nnation. Several times in the 2005 report, the             conduct, but never did. The 2009 examina-\n\n\n                                                    48\n\n\x0ction team determined that the investment ad-            the senior of\xef\xac\x81cial \xe2\x80\x9cinstructed (and even bul-\nviser had custody of assets invested in the             lied) examiners to not pursue certain red\nbroker-dealer because the managing partners             \xef\xac\x82ags\xe2\x80\x9d in the 2009 examinations in an attempt\nof the broker-dealer were owners and, thus,             to hide his failures in the 2005 examination.\nsupervised persons of the investment adviser            While the OIG investigation did not \xef\xac\x81nd evi-\nand had access to all client funds that were            dence substantiating the claim that the senior\ninvested in the broker-dealer. As a result, the         of\xef\xac\x81cial instructed or bullied examiners to ig-\n2009 examination team determined that the               nore \xe2\x80\x9cred \xef\xac\x82ags\xe2\x80\x9d in the 2009 examinations, the\ninvestment adviser was not in compliance with           OIG did \xef\xac\x81nd that examiners were uncomfort-\nthe custody rules. The OIG investigation                able with the senior of\xef\xac\x81cial\xe2\x80\x99s involvement in\nfound that the 2009 examination team made               the 2009 examinations and that this created\nthis custody determination based on the same            an appearance of impropriety, which could\nfacts that existed in 2005.                             have been avoided if the senior of\xef\xac\x81cial had\n                                                        been recused from the 2009 examinations. In\n     The 2009 examination team also obtained            the course of its investigation, the OIG also\nthe records of an unregistered entity that was          found evidence that many employees had sig-\nbeing used as a \xe2\x80\x9cpass-through\xe2\x80\x9d vehicle and, in          ni\xef\xac\x81cant concerns about the senior of\xef\xac\x81cial\xe2\x80\x99s\nthose records, uncovered evidence of the                management style in general. Yet, the OIG\nfraud. The 2005 examination team did not                also found that there was little, if any, evi-\neven request records of the unregistered entity         dence that any action was taken by manage-\nduring their examination and seemed con-                ment to resolve or even address these con-\nfused about whether the SEC had any author-             cerns. We found that many employees at this\nity to obtain documents from unregistered en-           regional of\xef\xac\x81ce were fearful to complain be-\ntities even where fraud was suspected.                  cause of possible retaliation. The OIG did\n                                                        not substantiate the allegation that the senior\n    The OIG investigation found a major dif-            of\xef\xac\x81cial lied in previous OIG testimony.\nference between the manner in which the two\nexaminations were conducted related to the                   The OIG issued its report of investigation\nfact that the 2009 examinations were con-               to management on October 26, 2010. In its\nducted after the \xe2\x80\x9cMadoff \xe2\x80\x9d scandal. The OIG             report, the OIG recommended that SEC\nfound that after Bernard Madoff confessed to            management carefully review the portions of\noperating a $50 billion Ponzi scheme and the            the report that relate to the performance fail-\nOIG issued a report of investigation regarding          ures by those employees who still work at the\nthe failure of the SEC to uncover that scheme,          SEC, so that appropriate action could be\nSEC examiners focused more acutely on cus-              taken, on an employee-by-employee basis, as\ntody of assets, conducted more joint examina-           appropriate. The OIG also speci\xef\xac\x81cally rec-\ntions, and were more aggressive in seeking re-          ommended that the senior of\xef\xac\x81cial not be\ncords from unregistered \xef\xac\x81rms. The OIG in-               placed back in a supervisory role. The OIG\nvestigation found that, unfortunately, the 2005         further recommended that the regional of\xef\xac\x81ce\nexamination was conducted under \xe2\x80\x9cpre-                   (1) establish a staff recusal policy for examina-\nMadoff \xe2\x80\x9d procedures by examiners, who were              tions, and (2) include, in its examination refer-\naware of and had evidence of potential fraud,           ral policy and procedures, a mechanism for\nbut did not take the basic steps necessary to           tracking the outcome of an examination refer-\ninvestigate the matter further and, as with             ral. Finally, the OIG recommended that\nMadoff, a signi\xef\xac\x81cant fraud was not uncovered            management take the necessary actions to es-\ntimely.                                                 tablish appropriate mechanisms in the re-\n                                                        gional of\xef\xac\x81ce to ensure that employee feedback\n    The OIG also speci\xef\xac\x81cally investigated the           about supervisors is appropriately and suf\xef\xac\x81-\nallegation in the anonymous complaint that              ciently addressed so that employees feel com-\n\n                                                  49\n\n\x0cfortable conveying feedback about their superi-         the extent to which SEC and government-wide\nors without fear of retaliation.                        ethic rules would limit the former employee\xe2\x80\x99s\n                                                        communications with former colleagues at the\n    In response to the OIG\xe2\x80\x99s recommendation,            SEC on behalf of the \xef\xac\x81rm going forward. Ac-\non January 10, 2011, the regional of\xef\xac\x81ce ex-             cordingly, Senator Grassley requested that the\namination staff was noti\xef\xac\x81ed that the Of\xef\xac\x81ce of           OIG conduct a review of the circumstances\nCompliance Inspections and Examinations                 surrounding the former employee\xe2\x80\x99s departure\n(OCIE) Labor-Management Forum Commit-                   from the SEC and disclose the results so that\ntee within the regional of\xef\xac\x81ce had been desig-           Congress and the public can more accurately\nnated as the forum through which employees              assess the integrity of the SEC\xe2\x80\x99s operations.\ncan draw attention to their concerns. In addi-\ntion, the senior of\xef\xac\x81cial who the OIG recom-                  In response to Senator Grassley\xe2\x80\x99s request,\nmended not be placed in a supervisory role re-          the OIG opened this investigation and, in con-\nsigned from the agency, and management pro-             ducting the investigation, researched and ana-\nposed disciplinary action against one of the            lyzed post-employment con\xef\xac\x82ict-of-interest re-\nsupervisors on the 2005 examination of the              strictions that apply to executive branch of\xef\xac\x81-\ninvestment adviser. As of the end of the semi-          cers and employees generally, as well as rules\nannual reporting period, corrective action re-          that speci\xef\xac\x81cally apply to current and former\ngarding the OIG\xe2\x80\x99s remaining recommenda-                 SEC employees. \xc2\xa0The OIG also obtained from\ntions was pending.                                      OIT and searched over 250,000 employee\n                                                        e-mails. \xc2\xa0In addition, the OIG reviewed nu-\n    A public version of the OIG\xe2\x80\x99s report is             merous documents including, but not limited\navailable on the agency\xe2\x80\x99s website at                    to, (1) supporting documents produced by the\nhttp://www.sec.gov/foia/foiadocs.htm.                   SEC Ethics Of\xef\xac\x81ce and certain witnesses, (2) the\n                                                        former employee\xe2\x80\x99s personnel \xef\xac\x81le, (3) letters\nInvestigation of Whether a Former                       \xef\xac\x81led in compliance with the SEC\xe2\x80\x99s notice of\nSenior Official Violated Conflict-of-                   representation requirement from 2007 through\nInterest Restrictions in Connection                     2010, and (4) comment letters submitted to the\nWith Employment at a Trading Firm                       SEC by the trading \xef\xac\x81rm that hired the former\n(Report No. OIG-540)\n                                                        employee from 2009 through 2010. \xc2\xa0Finally,\n     On June 14, 2010, the Honorable Charles            the OIG took sworn testimony from six current\nE. Grassley, United States Senator (R-Iowa),            and former SEC employees.\nsent a letter to the OIG regarding the \xe2\x80\x9crevolv-\ning door between\xe2\x80\x9d employment at the SEC                      The OIG issued its report of investigation\nand \xe2\x80\x9cthe securities industry, which the SEC is          on January 25, 2011, indicating that it found\ncharged with regulating.\xe2\x80\x9d \xc2\xa0Senator Grassley\xe2\x80\x99s           no evidence that the former employee violated\nletter speci\xef\xac\x81cally referenced a senior SEC of\xef\xac\x81-         any con\xef\xac\x82ict-of-interest provisions or acted in an\ncial who left the agency in June 2010 to join a         improper manner in connection with employ-\ntrading \xef\xac\x81rm. \xc2\xa0According to Senator Grassley,            ment at the trading \xef\xac\x81rm. \xc2\xa0The evidence and\nthe employee\xe2\x80\x99s departure from the SEC to                testimony obtained by the OIG showed that\nwork at the \xef\xac\x81rm raised questions about (1) the          almost immediately after being contacted by\nextent to which the former employee was per-            the \xef\xac\x81rm about future employment, the former\nsonally involved in the SEC\xe2\x80\x99s review of recent          employee contacted the SEC Ethics Of\xef\xac\x81ce and\nmarket events and related rulemaking activi-            \xef\xac\x81led an online recusal form. The evidence ob-\nties, (2) when the former employee had contact          tained further showed that the former em-\nwith the \xef\xac\x81rm about the possibility of employ-           ployee promptly informed the applicable divi-\nment there and whether the former employee              sion director of the former employee\xe2\x80\x99s recusal\nwas recused from matters related to the SEC\xe2\x80\x99s           and, soon thereafter, the former employee was\nreview and rulemaking after that point, and (3)         recused from particular rulemakings.\n\n                                                  50\n\n\x0c    The OIG did \xef\xac\x81nd, however, that a lack of            entered on the recusal form, and (4) seek\nproper record keeping at the SEC made it dif-           modi\xef\xac\x81cation from OGE of the blanket ex-\n\xef\xac\x81cult to determine from which matters the               emption for SK employees from the one-year\nformer employee was, in fact, recused and on            \xe2\x80\x9ccooling-off \xe2\x80\x9d ban. \xc2\xa0The OIG also recom-\nwhich matters the former employee continued             mended that the former employee\xe2\x80\x99s division\nto work after beginning employment discus-              designate an administrative contact to main-\nsions. Speci\xef\xac\x81cally, the OIG found that neither          tain a list of speci\xef\xac\x81c matters from which sen-\nthe Ethics Of\xef\xac\x81ce nor the division in which the          ior of\xef\xac\x81cers are recused. As of the end of the\nformer employee worked created or main-                 reporting period, no action had yet been taken\ntained records of the matters from which the            by management with respect to the OIG\xe2\x80\x99s\nformer employee was recused, and that the               recommendations. Management indicated\nonline recusal form did not have an area in             that it plans to implement the OIG\xe2\x80\x99s recom-\nwhich an employee can enter recusal informa-            mendations simultaneously with any recom-\ntion for particular matters. Additionally, the          mendations that may arise from GAO\xe2\x80\x99s ongo-\nOIG found that the SEC\xe2\x80\x99s Ethics Of\xef\xac\x81ce does              ing revolving door audit.\nnot require its employees to document the ad-\nvice they provide to employees and that the             Improprieties in the Selection and\npractice of not documenting meetings held               Award of a Sole-Source Contract\nand advice provided does not support the in-            (Report No. OIG-523)\nterests of employees or those of the Commis-\nsion.                                                        On September 24, 2009, the OIG opened\n                                                        an investigation into the SEC OIT\xe2\x80\x99s August\n    The OIG investigation also found that,              2008 acquisition of approximately $1 million\nalthough many employees on the SEC\xe2\x80\x99s SK                 of certain equipment intended to serve as vir-\npay scale would be subject to the one-year              tual storage. The acquisition was one of four\n\xe2\x80\x9ccooling off \xe2\x80\x9d ban on communications back to            OIT projects reviewed by the OIG as part of\nthe agency that is applicable to senior employ-         its audit of the SEC\xe2\x80\x99s Capital Planning and\nees, the U.S. Of\xef\xac\x81ce of Government Ethics                Investment Control (CPIC) process, entitled\n(OGE), at the SEC\xe2\x80\x99s request, had exempted all           Assessment of the SEC Information Technology In-\nSEC SK employees from the prohibition.                  vestment Process, Report No. 466, issued March\nThis automatic exemption for SK employees               26, 2010. Based on the \xef\xac\x81ndings of that audit\nhas enabled some former SEC employees who               with respect to this particular acquisition, the\nwere highly compensated and held in\xef\xac\x82uential             OIG decided to open an investigation.\npositions to evade the ban, even though they\nare the very type of employees the ban was                  During the course of its investigation, the\nintended to cover. The OIG concluded,                   OIG obtained and searched approximately\ntherefore, that the blanket exemption for SK            1.2 million e-mails from 13 SEC staff mem-\nemployees opens the door to potential abuse             bers. The OIG also reviewed numerous\nand that efforts should be made to seek modi-           documents related to the acquisition, includ-\n\xef\xac\x81cation to the blanket exemption from OGE.              ing vendor proposals, meeting minutes of the\n                                                        SEC\xe2\x80\x99s Information Of\xef\xac\x81cers Council and\n     In light of its \xef\xac\x81ndings, the OIG recom-            OIT\xe2\x80\x99s Project Review Board, requisition re-\nmended that the SEC Ethics Of\xef\xac\x81ce (1) docu-              quests, and purchase orders and supporting\nment the advice provided to SEC employees,              documentation. Further, the OIG conducted\n(2) add a \xef\xac\x81eld to the online recusal system in          12 testimony or interview sessions of witnesses\nwhich employees can add information regard-             with knowledge of the facts and circumstances\ning the speci\xef\xac\x81c matters from which they are             surrounding the acquisition and/or knowl-\nrecused, (3) rectify the on-line recusal data-          edge of information otherwise pertinent to the\nbase\xe2\x80\x99s inability to store certain information           investigation.\n\n\n                                                  51\n\n\x0c    The OIG investigation found that OIT\xe2\x80\x99s          properly split into two orders; and (4) OIT\ndecision to purchase the equipment initially        shared budget information with the vendor in\nwas made primarily based on a very simple           order for the vendor to tailor its proposal for\nsales pitch from a vendor. OIT purchased the        the \xef\xac\x81rst order within the SEC\xe2\x80\x99s budget pa-\nequipment without conducting any technical          rameters, even though that proposal omitted\nanalysis or review and decided to forgo an op-      essential equipment that the SEC was subse-\nportunity to test the equipment at no cost.         quently forced to purchase, and tied that order\nKey OIT staff members were not consulted            to two larger orders that were placed one week\nabout the decision to acquire the equipment.        later.\nOIT also allowed the vendor to use informa-\ntion it improperly obtained from the SEC to             Moreover, the OIG found that the acquisi-\nsubmit a quote in its proposal for the exact        tion was not reviewed and approved by the\namount that was budgeted by the SEC for the         SEC\xe2\x80\x99s Competition Advocate as required by\ncontract. Immediately after OIT attempted to        the CCA and the FAR. The OIG further\ninstall the equipment, it was apparent that the     found that if the acquisition had been re-\nstorage system was a failure. It was quickly        viewed by the SEC\xe2\x80\x99s Competition Advocate, it\ndemonstrated that it was impossible for the         would not have been approved. The OIG\nequipment to be installed properly and that         also found that OIT violated the SEC\xe2\x80\x99s CPIC\nthe equipment not suitable for the SEC.             procedures by waiving a pre-acquisition re-\n                                                    view of the purchase. Finally, the OIG found\n     The OIG investigation found that the ac-       that as a direct result of those numerous viola-\nquisition violated several provisions of the        tions of the CCA, the FAR, and the SEC\xe2\x80\x99s\nCompetition and Contracting Act (CCA) and           CPIC procedures, the SEC invested approxi-\nthe Federal Acquisition Regulation (FAR).           mately $1 million in technology that immedi-\nThe Of\xef\xac\x81ce of Administrative Services (OAS)          ately failed to perform its intended function.\napproved the acquisition on a non-competitive\nbasis; however, the OIG found that the justi\xef\xac\x81-           The OIG issued its report of investigation\ncation cited for the award on that basis, \xe2\x80\x9conly     on December 14, 2010, and recommended\none responsible source . . . will satisfy [the      that appropriate action, including\nSEC\xe2\x80\x99s] requirements,\xe2\x80\x9d was inapplicable. Con-        performance-based action and/or training, be\nsequently, the acquisition violated the central     taken with respect to four employees. The\ntenet of the CCA and the FAR, which is that         OIG also recommended that OIT institute\n\xe2\x80\x9cexcept in the case of procurement proce-           appropriate procedures to ensure that any sig-\ndures otherwise expressly authorized by stat-       ni\xef\xac\x81cant information technology acquisition\nute, an executive agency in conducting a pro-       undergo an adequate pre-acquisition review of\ncurement for property or services shall obtain      its technical merits and compatibility with ex-\nfull and open competition through the use of        isting information technology architecture.\ncompetitive procedures.\xe2\x80\x9d                            Finally, the OIG recommended that OAS in-\n                                                    stitute appropriate procedures, including\n    In addition, the OIG found several other        training of its contract specialists, to ensure\nFAR violations, including: (1) the written jus-     that future procurements are done in accor-\nti\xef\xac\x81cation for the award of the contract on a        dance with federal statutes and regulations.\nnon-competitive basis did not include the es-       As of the end of the reporting period, no ac-\ntimated cost of the acquisition; (2) the equip-     tion had been taken by management with re-\nment was purchased before the written justi\xef\xac\x81-       spect to the OIG\xe2\x80\x99s disciplinary recommenda-\ncation had been approved by the contract of\xef\xac\x81-       tions, while management had begun to im-\ncer; (3) one of the requisition requests and        plement the procedural and training recom-\npurchase orders for the acquisition was im-         mendations.\n\n\n                                                  52\n\n\x0cAbusive and Intimidating Behavior                    staff feared losing their jobs if they com-\nWithin a Headquarters Branch (Report                 plained about the employee. In addition, the\nNo. OIG-537)                                         investigation found that the employee\xe2\x80\x99s man-\n                                                     agers took no steps to rein him in and or inves-\n    On May 13, 2010, the OIG opened an\n                                                     tigate his conduct, despite the availability of\ninvestigation into an anonymous complaint\n                                                     the statements of seven contract staff detailing\nthat an SK-14 employee at SEC headquarters\n                                                     his misbehavior. In all, we found that there\nhad engaged in abusive and intimidating be-\n                                                     was an atmosphere of bullying and intimida-\nhavior towards contract staff, used profane\n                                                     tion and an appearance that the employee\nlanguage, and threatened their job security.\n                                                     could do as he pleased with little or any re-\nThe complaint further claimed that the em-\n                                                     strictions placed on his behavior.\nployee had lied to his supervisor about certain\nof these events and that his supervisor ap-\n                                                         The investigation further found that the\npeared to be unaware of the employee\xe2\x80\x99s abu-\n                                                     environment was such that the contract staff\nsive and intimidating conduct. The complaint\n                                                     feared retribution if they complained about\nalso alleged an inappropriate relationship be-\n                                                     the employee and felt complaining would be\ntween this employee and one particular con-\n                                                     useless, as he appeared to be able to do as he\ntractor. Included with the anonymous com-\n                                                     pleased and get away with it. While there was\nplaint were the statements of seven witnesses\n                                                     evidence that the Contracting Of\xef\xac\x81cer\xe2\x80\x99s Tech-\nthat were submitted in support of the com-\n                                                     nical Representative (COTR) for the particu-\nplaint. The complainant requested that the\n                                                     lar contract at issue had personally witnessed\nstatements be safeguarded to protect the pri-\n                                                     the employee becoming boisterous and using\nvacy and job security of the witnesses, who\n                                                     profanities on several occasions and counseled\nfeared retribution.\n                                                     the employee, this counseling was ineffective\n                                                     and the employee continued to engage in in-\n     During the investigation, the OIG took the\n                                                     appropriate conduct. The employee\xe2\x80\x99s supervi-\nsworn testimony of 15 individuals, including\n                                                     sor testi\xef\xac\x81ed that while he was not aware of any\nboth SEC staff members and contractor per-\n                                                     complaints about the employee cursing or yell-\nsonnel. The OIG also conducted interviews of\n                                                     ing at anyone, he had been made aware that\nthree other SEC staff members and additional\n                                                     some people felt intimidated by the employee.\nfollow-up interviews. In addition, the OIG\n                                                     Yet, despite these expressed concerns, the su-\nobtained and reviewed security camera re-\n                                                     pervisor did not take suf\xef\xac\x81cient steps to ensure\ncordings and numerous relevant documents.\n                                                     that the employee was acting appropriately.\nThe OIG also obtained from OIT and\nsearched the e-mails of ten individuals and\n                                                         The OIG investigation also uncovered\nobtained additional e-mails directly from cer-\n                                                     problems with respect to the operation and\ntain witnesses.\n                                                     management of an of\xef\xac\x81ce overseen by the em-\n                                                     ployee. The evidence showed that the supervi-\n    The OIG investigation found evidence to\n                                                     sor had assigned the employee responsibility\nsupport virtually all of the allegations con-\n                                                     over this particular of\xef\xac\x81ce and that the em-\ntained in the anonymous complaint. The in-\n                                                     ployee was the COTR for the contract of an\nvestigation uncovered evidence that on many\n                                                     individual who worked in this of\xef\xac\x81ce. The\noccasions, the employee who was the subject\n                                                     OIG investigation found evidence that the\nof the complaint engaged in abusive and in-\n                                                     employee and this contractor had a personal\ntimidating conduct towards contract staff, fre-\n                                                     relationship that went beyond the \xe2\x80\x9carms-\nquently using profanities. The evidence also\n                                                     length\xe2\x80\x9d relationship that is required between a\nshowed that the employee habitually made\n                                                     COTR and a contractor. We found they ex-\ncomments that the contract staff perceived as\n                                                     changed e-mails of a \xef\xac\x82irtatious nature that\nthreats to their jobs and many of the contract\n                                                     they both admitted were inappropriate for the\n\n                                                  53\n\n\x0cworkplace, lunched together quite frequently         contract. In addition, we recommended that\nand sometimes socialized outside of work.            a thorough review of the overall management\n                                                     and structure of the headquarters branch be\n    Based upon all of the evidence obtained,         conducted and that signi\xef\xac\x81cant changes be\nthe OIG investigation concluded that there           made, including, but not limited to, (1) institut-\nwas inadequate supervision of the employee           ing a strong and effective anti-retaliation pol-\nand serious problems in the management of            icy and ensuring that no retaliation occurred\nthe applicable headquarters branch. While            as a result of the OIG investigation, (2) im-\nthe supervisor maintained to have an open            plementing a mechanism for making anony-\ndoor policy and to talk frequently with the          mous complaints or suggestions to the branch\ncontract staff, the OIG obtained evidence that       supervisor, (3) instituting periodic meetings\nhe took a hands-off approach to management           between branch management and the con-\nand, prior to learning of our investigation,         tractor onsite managers, and (4) developing\nhad little contact with the contract staff. We       and implementing written policies and proce-\nalso learned during the investigation that there     dures for management of the contract.\nwas a great emphasis placed on going through\nthe chain of command, which had the effect               In response to the OIG\xe2\x80\x99s report, manage-\nof discouraging complaints being brought di-         ment took no action against the employee\nrectly to the supervisor\xe2\x80\x99s attention. Moreover,      prior to his resignation and acceptance of\nthere was an expressed reluctance to escalate        other government employment, while the con-\nincidents to the supervisor\xe2\x80\x99s level.                 tractor was removed from her contract. As of\n                                                     the end of the reporting period, corrective\n     Finally, the OIG investigation found that       action regarding the OIG\xe2\x80\x99s remaining rec-\nthe employee demonstrated a lack of candor           ommendations was pending.\nin signi\xef\xac\x81cant aspects of his testimony before\nthe OIG. In particular, in the face of the           Abuse of Compensatory Time for\noverwhelming evidence that the employee re-          Travel by a Headquarters Manager and\npeatedly and frequently yelled and used pro-         Ineffective Supervision by\nfanity towards contract staff, he denied ever        Management (Report No. OIG-538)\ndoing so. Further, the employee\xe2\x80\x99s account of\n                                                         The OIG opened an investigation on\nthe events of the particular day mentioned\n                                                     August 19, 2009, after receiving an anony-\nabove was not credible and stood in stark con-\n                                                     mous complaint, dated August 13, 2009, re-\ntrast to the evidence we obtained from the\n                                                     garding a headquarters manager. The com-\ncontract staff, the contractor managers and\n                                                     plaint alleged that the manager was regularly\nthe SEC COTR for the applicable contract.\n                                                     leaving the of\xef\xac\x81ce 30 to 50 minutes early with-\n                                                     out taking proper leave for the past six years,\n    The OIG issued a comprehensive report\n                                                     and may have also arrived late to work. The\nof investigation to management on November\n                                                     complaint added that the manager\xe2\x80\x99s requests\n10, 2010. Based upon the evidence obtained,\n                                                     for travel expense reimbursement for cash ex-\nthe OIG recommended disciplinary action, up\n                                                     penditures sometimes exceeded of\xef\xac\x81cial ex-\nto and including dismissal, for the employee\n                                                     penses. The complaint also requested an\nand disciplinary action, up to and including\n                                                     audit of the manager\xe2\x80\x99s requests for compensa-\nremoval from her contract, for the contractor.\n                                                     tory time for travel.\nWe also recommended appropriate manage-\nment training for the supervisor and addi-\n                                                         The OIG found in its investigation that\ntional training in contract management and\n                                                     the manager had been systematically request-\noversight for the COTR for the applicable\n                                                     ing and receiving compensatory time for travel\n\n\n\n                                                   54\n\n\x0cwell beyond his actual hours in travel status.          plinary action be taken against the manager,\nIn fact, during the 21-month period reviewed            (2) the manager pay back $5,274.74 in com-\nby the OIG, the OIG found that the manager              pensatory travel time overages, $475.00 in un-\nclaimed and received 63.5 hours of compen-              justi\xef\xac\x81ed telephone call reimbursements, and\nsatory time for travel in excess of what he was         $71.00 in excess M&IE, (3) the manager be\nentitled to under SEC regulations, costing the          trained on SEC policies and rules concerning\ngovernment $5,274.74. In addition, the OIG              compensatory time for travel, and (4) the\nfound that the manager was overpaid for                 manager be required to either work his cur-\nmeals and incidental expenses (M&IE) on one             rently scheduled hours, taking leave when he\noccasion in the amount of $71.00, and                   departs early, or request an alternate schedule.\nclaimed reimbursement for telephone calls               The OIG further recommended that the su-\nduring travel totaling $475.00, despite having          pervisor and senior supervisor receive man-\nan SEC-issued BlackBerry\xc2\xae telephone.                    agement training. Finally, we recommended\n                                                        that the Ethics Of\xef\xac\x81ce issue an SEC-wide\n    All of these infractions happened despite           e-mail reminder concerning compensatory\nthe supposed oversight of management. The               time for travel, including speci\xef\xac\x81c information\nOIG found that the supervisor approved all of           about using the mandatory \xe2\x80\x9cWorksheet for\nthe manager\xe2\x80\x99s requests for compensatory time            Determining Amount of Compensatory Time\nfor travel without question, even though the            for Travel.\xe2\x80\x9d\nsupervisor knew the manager\xe2\x80\x99s trips did not\ntake as long as he claimed. The OIG also                    As of the end of the reporting period, the\nfound that the supervisor did not require his           agency had issued a written reprimand to the\nsubordinates to submit the mandatory \xe2\x80\x9cWork-             manager and commenced efforts to recoup\nsheet for Determining Amount of Compensa-               the excess compensatory time and improper\ntory Time for Travel.\xe2\x80\x9d The OIG further                  reimbursements claimed. In addition, the\nfound that a senior supervisor approved the             Ethics Of\xef\xac\x81ce distributed the recommended\nmanager\xe2\x80\x99s travel reimbursements, which in-              e-mail on February 28, 2011, and manage-\ncluded telephone call reimbursements, despite           ment was in the process of scheduling the\nknowing the manager had an SEC-issued                   suggested training.\nBlackBerry\xc2\xae telephone.\n                                                        Investigation Concerning the Role of\n     In addition to compensatory time and               Political Appointees in the Freedom of\ntravel reimbursement issues, the OIG investi-           Information Act Process (Report No.\ngation found that the manager was regularly             OIG-543)\nleaving the of\xef\xac\x81ce early each day with his su-\n                                                            On September 2, 2010, the OIG opened\npervisor\xe2\x80\x99s knowledge and approval. Although\n                                                        an investigation in response to an August 23,\nthe OIG concluded that the manager was\n                                                        2010 letter from the Honorable Charles Gras-\nworking a full 8\xc2\xbd hour day, the OIG found\n                                                        sley (R-Iowa) and the Honorable Darrell Issa\nthat the manager was not working his regu-\n                                                        (R-California), requesting that OIG conduct\nlarly scheduled hours. In addition, the OIG\n                                                        an inquiry into the SEC\xe2\x80\x99s Of\xef\xac\x81ce of Freedom\nfound that the manager would sometimes\n                                                        of Information Act Services (FOIA Of\xef\xac\x81ce) to\ncome in before 6:30 a.m., which is before the\n                                                        determine whether, and if so, the extent to\nSEC\xe2\x80\x99s \xef\xac\x82exible band of hours, and count that\n                                                        which, political appointees are made aware of\ntime as hours worked, in violation of SEC pol-\n                                                        information requests and have a role in re-\nicy.\n                                                        quest reviews or decision-making.\n    The OIG issued its report of investigation\n                                                            During the course of this investigation, the\nto management on February 15, 2011. In its\n                                                        OIG requested the e-mail records of employ-\nreport, the OIG recommended that (1) disci-\n                                                        ees who may have sent, received, or been cop-\n\n                                                  55\n\n\x0cied on e-mails relevant to this investigation.       of the regional of\xef\xac\x81ce staff attorney and con-\nThe OIG estimates that it obtained and               ducted a follow-up interview of him, (2) con-\nsearched over 137,000 e-mails during the             ducted telephone interviews of the FBI agent,\ncourse of its investigation. The OIG also took       and (3) conducted a telephone interview of\nthe sworn testimony of 13 current SEC em-            the person to whom the SEC attorney alleg-\nployees, including seven employees of the            edly made the disclosure about the con\xef\xac\x81den-\nFOIA Of\xef\xac\x81ce. In addition, the OIG obtained            tial informant. The OIG also reviewed sev-\nand reviewed (1) documents describing the            eral documents provided by the FBI, including\nprocess for responding to FOIA requests, (2) a       notes of a meeting with the attorney and a \xef\xac\x81le\nlist of SEC FOIA liaisons, and (3) a list of all     memorandum prepared by the FBI agent re-\nSEC political appointees.                            garding the improper disclosure. Finally, the\n                                                     OIG reviewed the information from an inter-\n    The OIG report of investigation, issued          nal database associated with the SEC investi-\non December 3, 2010, did not \xef\xac\x81nd evidence            gation that is related to the FBI matter.\nthat political appointees at the SEC played an\nimproper role in the review of or response to            The OIG found that the staff attorney\nFOIA requests for SEC records. The OIG               had disclosed to an investor and witness in the\ninvestigation found that the SEC\xe2\x80\x99s responses         matter: (1) the name of the con\xef\xac\x81dential in-\nto requests for OIG reports by Members of            formant, (2) the fact that the informant was\nCongress are subject to review and approval          cooperating with the FBI, and (3) the fact that\nby the agency\xe2\x80\x99s \xef\xac\x81ve Commissioners, who are           that the informant\xe2\x80\x99s cooperation included se-\npolitical appointees. We also found that the         cretly tape recording conversations with the\nSEC attempts to provide the same response to         subjects of the FBI investigation. The OIG\nFOIA requesters as that provided to Members          further found that the SEC staff attorney did\nof Congress who request OIG reports. As a            so despite the fact that the FBI had given him\nresult, the Commission\xe2\x80\x99s review process for          the recording with the express agreement that\nrequests for OIG reports by Members of               he not disclose the existence of the recording\nCongress affects the responses to FOIA re-           or the informant\xe2\x80\x99s status as a con\xef\xac\x81dential in-\nquests for these same OIG reports. However,          formant. Even absent such an agreement, the\nthe OIG investigation did not \xef\xac\x81nd that the           staff attorney acknowledged that such disclo-\nlimited role played by the Commissioners in          sure, which he denied making, was serious and\nthe process of responding to requests for OIG        improper.\nreports by Members of Congress had a politi-\ncal impact on the SEC\xe2\x80\x99s response to these                The OIG issued its report of investigation\nrequests.                                            on February 7, 2011, and referred the matter\n                                                     to management, recommending disciplinary\nUnauthorized and Improper Disclosure                 action against the staff attorney. As of the\nby a Regional Office Staff Attorney                  end of the reporting period, management had\n(Report No. OIG-550)                                 not taken action in response to the OIG\xe2\x80\x99s\n                                                     recommendation.\n    On October 26, 2010, the OIG opened an\ninvestigation into a complaint it received from\n                                                     Improper Access to SEC Facilities and\nthe FBI. An FBI agent alleged that an SEC            Computer Systems (Report No.\nregional of\xef\xac\x81ce staff attorney had improperly         OIG-544)\ndisclosed information regarding a con\xef\xac\x81dential\ninformant who was assisting in an FBI investi-           The OIG opened this investigation on\ngation.                                              June 9, 2010, based on a complaint from a\n                                                     former headquarters contract employee. Spe-\n    In conducting the investigation into this        ci\xef\xac\x81cally, the former contract employee alleged\nallegation, the OIG (1) took sworn testimony         that when he began his tenure as a subcon-\n\n                                                   56\n\n\x0ctractor to an SEC contractor, he was improp-            to enter SEC computer systems and applica-\nerly granted access to SEC buildings and                tions, in direct violation of OIT rules. While\ncomputer systems, including sensitive internal          the SEC contractor denied sharing his pass-\ndatabases containing nonpublic information,             word and identi\xef\xac\x81cation, he did admit to hav-\nbefore having his background investigated and           ing a password like the one the former con-\nbeing cleared and issued an of\xef\xac\x81cial SEC                 tract employee remembered using to access\nbadge.                                                  SEC computer systems and having the former\n                                                        contract employee standing at his computer\n     In conducting its investigation into these         while he logged on. In addition, the former\nallegations, the OIG interviewed the former             contract employee told the OIG, and the evi-\ncontract employee and requested documents               dence established that, he used his personal\nand follow-up information from him, which               e-mail account to perform SEC work on his\nhe later provided. The OIG took the sworn               own laptop computer, also in direct violation\ntestimony of the COTR for the applicable                of OIT rules.\ncontract, a current SEC contract employee,\nand a branch chief. In addition, the OIG ob-                In all, the OIG investigation revealed that\ntained e-mails for relevant contract employees          it has been a practice in a headquarters of\xef\xac\x81ce\nfor the approximate dates of the former con-            to allow contractors to begin work at the SEC\ntract employee\xe2\x80\x99s tenure.                                before receiving a background investigation\n                                                        clearance and being issued an of\xef\xac\x81cial SEC\n    The OIG investigation determined that               badge, in violation of federal security re-\nthe former contract employee, as well as other          quirements. Moreover, the evidence also es-\ncontractors, had been improperly granted ac-            tablished that these contractors were accessing\ncess to SEC buildings and computer systems              the SEC computer systems and applications\nin direct violation of security requirements            during that time. As a result, the OIG re-\napplicable to federal employees and contrac-            ferred this matter to management for discipli-\ntors. In fact, the investigation revealed that          nary action against the COTR, up to and in-\nthe former contract employee worked at the              cluding termination from federal service, and\nSEC for several weeks before receiving a fa-            the contractor, up to and including removal\nvorable suitability determination based upon            from the contract.\nhis background investigation and being issued\nan of\xef\xac\x81cial SEC badge.                                       Given the potentially detrimental conse-\n                                                        quences of this practice in the headquarters\n    The investigation further established that          of\xef\xac\x81ce, the OIG also speci\xef\xac\x81cally recommended\nSEC of\xef\xac\x81cials, including the COTR, were                  that (1) OHR take immediate measures to de-\naware of the former contract employee\xe2\x80\x99s                 termine whether every employee and contrac-\npending suitability status. We found that the           tor in the headquarters of\xef\xac\x81ce has been prop-\nCOTR not only made no attempt to prevent                erly cleared by a background investigation\nthe former contract employee from working at            and issued an of\xef\xac\x81cial SEC badge, (2) OHR\nthe SEC until his background investigation              issue written policy on proper issuance, and\nwas successfully completed, but purposely cir-          documentation of, visitor badges, speci\xef\xac\x81cally\ncumvented proper security procedures to al-             noting that visitor badges cannot be issued in\nlow the former contract employee to enter an            lieu of, or while awaiting, the issuance of a\nSEC building and conduct SEC work before                permanent of\xef\xac\x81cial SEC badge, (3) the head-\nhe was granted an of\xef\xac\x81cial SEC badge.                    quarters of\xef\xac\x81ce issue a directive ending its\n                                                        practice of allowing contractors (or others) to\n    In addition, the former contract employee           begin work of any kind before being cleared\ntold the OIG that he routinely used another             in a proper background investigation and be-\nSEC contractor\xe2\x80\x99s password and identi\xef\xac\x81cation             ing issued an of\xef\xac\x81cial SEC badge, and (4) the\n\n                                                  57\n\n\x0cCommission take steps to deactivate of\xef\xac\x81cial         threatened to jeopardize the ongoing investi-\nSEC badges and terminate access to SEC              gation, but also misled several investors into\ncomputer systems for terminated or separated        believing that the purported company was le-\nemployees and contractors.                          gitimate. Moreover, some or all of the inves-\n                                                    tors knew that the employee worked at the\n    The OIG issued its report of investigation      SEC and, therefore, believed incorrectly that\non January 20, 2011. As of the end of the           he had \xef\xac\x81rst-hand knowledge of the SEC\xe2\x80\x99s in-\nreporting period, management had solicited          vestigation and that his representations were\ncomments from the OIG on new draft operat-          credible. After the regional of\xef\xac\x81ce senior of\xef\xac\x81-\ning procedures which address speci\xef\xac\x81c steps the      cial e-mailed the employee and inquired as to\nheadquarters of\xef\xac\x81ce should perform to ensure         whether he was communicating with investors\nthat SEC computer network and telephone             about the investigation, the employee was\naccounts of SEC employees and contractors           placed on administrative leave.\nare properly created, terminated, and trans-\nferred. No action had been taken on the                 During this investigation, the OIG ob-\nOIG\xe2\x80\x99s disciplinary recommendations as of the        tained and reviewed nearly 10,000 e-mails for\nend of the reporting period.                        the relevant time period and took the em-\n                                                    ployee\xe2\x80\x99s sworn testimony. The OIG also re-\nUnauthorized Disclosure of Nonpublic                ceived and reviewed a production of addi-\nInformation During an Active SEC                    tional supporting documentation from the re-\nInvestigation (Report No. OIG-558)                  gional of\xef\xac\x81ce, including investigative tran-\n                                                    scripts, court documents, Internet postings,\n    On February 7, 2011, the OIG opened an\n                                                    and other relevant information.\ninvestigation into allegations from a regional\nof\xef\xac\x81ce senior of\xef\xac\x81cial that an employee at SEC\n                                                        The OIG found that the employee, by his\nheadquarters was providing false, misleading,\n                                                    own admission, communicated with several\nand nonpublic information to investors about\n                                                    investors during the SEC\xe2\x80\x99s investigation of,\nan active enforcement investigation and litiga-\n                                                    and litigation against, the purported company.\ntion from as early as October 2010 to Febru-\n                                                    In so doing, the employee shared nonpublic,\nary 2011. According to the regional of\xef\xac\x81ce\n                                                    false, and misleading information with inves-\nsenior of\xef\xac\x81cial, the headquarters employee re-\n                                                    tors. As a result, the OIG found that his con-\npeatedly told investors, of whom he was one,\n                                                    duct not only confused certain investors and\nthat a particular investment company was le-\n                                                    gave them a false sense of hope, but it also\ngitimate and that these investors would be re-\n                                                    had the potential to adversely affect an ongo-\nceiving considerable sums of money from\n                                                    ing enforcement investigation.\ntheir investments. The SEC, however, be-\nlieved the company was actually a Ponzi\n                                                         Based on the foregoing, the OIG issued its\nscheme that targeted certain investors, and on\n                                                    report of investigation on March 31, 2011,\nOctober 6, 2010, the SEC \xef\xac\x81led an action\n                                                    and referred the matter for disciplinary action,\nagainst the purported company in federal\n                                                    up to and including dismissal from federal\ncourt, obtaining an emergency asset freeze.\n                                                    service. The OIG recommended further that\nThe SEC later was granted a default judg-\n                                                    all staff in the employee\xe2\x80\x99s of\xef\xac\x81ce (1) receive\nment against the purported company on Feb-\n                                                    comprehensive instructions on what consti-\nruary 14, 2011, which included a permanent\n                                                    tutes nonpublic information and the proper\ninjunction and an order for millions in dis-\n                                                    way to handle such information, and (2) be\ngorgement and prejudgment interest.\n                                                    required to certify that they have successfully\n                                                    completed training and understand the proper\n   The regional of\xef\xac\x81ce senior of\xef\xac\x81cial was con-\n                                                    way to handle nonpublic information before\ncerned that the employee\xe2\x80\x99s actions not only\n                                                    they are allowed access to such information.\n\n                                                  58\n\n\x0cBecause the OIG\xe2\x80\x99s report of investigation was            Allegation of Negligence in the\nissued just prior to the end of the semiannual           Conduct of an Enforcement\nreporting period, no action had yet been taken           Investigation (Report No. OIG-510)\nby management with respect to the OIG\xe2\x80\x99s\nrecommendations.                                             During the semiannual reporting period,\n                                                         the OIG concluded an investigation into a\n                                                         complaint received by a former attorney that\nImproper Comments by a Regional\nOffice Senior Counsel and Alleged                        the Division of Enforcement (Enforcement)\nAbuse of Leave by a Regional Office                      committed acts of negligence in conducting\nSenior Counsel and Senior Official                       an initial insider trading investigation of a\n(Report No. OIG-545)                                     hedge fund. The complaint was based upon\n                                                         recently-discovered information showing that\n    On September 20, 2010, the OIG opened                Enforcement had access to speci\xef\xac\x81c evidence\nan investigation as a result of a September 17,          that insider trading had occurred prior to clos-\n2010 complaint from a witness who was in-                ing its initial investigation.\nvolved in a civil action \xef\xac\x81led by the SEC. The\nwitness alleged that an SEC regional of\xef\xac\x81ce                   The OIG took the sworn testimony of the\nsenior counsel had made a sexist remark to               complainant, two headquarters employees,\nhim at video deposition testimony. In addi-              and a regional of\xef\xac\x81ce employee. Further, the\ntion, on November 2, 2010, the OIG received              OIG interviewed a former Assistant United\nan anonymous complaint involving the same                States Attorney for the Southern District of\nsenior counsel. This complaint alleged that              New York, who conducted a parallel criminal\nthe senior counsel and another senior of\xef\xac\x81cial            investigation during Enforcement\xe2\x80\x99s initial in-\nconsistently arrived late to work, took long             vestigation. The OIG reviewed approxi-\nlunches, and left early without taking leave.            mately 85,000 e-mails of current and former\n                                                         SEC employees relevant to this matter. The\n    During the course of this investigation, the         OIG also reviewed hundreds of other docu-\nOIG took the sworn testimony of multiple                 ments related to this matter, including docu-\nregional of\xef\xac\x81ce staff members, including senior           ments produced by Enforcement related to the\nmanagement. The OIG also reviewed e-mail                 investigations of the hedge fund and docu-\nrecords and the video deposition.                        ments provided by the complainant.\n    On February 4, 2011, the OIG issued its                  The OIG learned that on November 14,\nreport of investigation in this matter. The              2003, Enforcement opened an investigation of\nOIG did not \xef\xac\x81nd suf\xef\xac\x81cient evidence to sup-               the hedge fund regarding possible insider trad-\nport the allegations against the senior of\xef\xac\x81cial          ing in several different securities. In June\nand the senior counsel regarding their work              2005, the complainant, who was then the\nschedules. However, the OIG did \xef\xac\x81nd that                 principal SEC staff attorney assigned to the\nthe senior counsel made an inappropriate re-             matter, met with his supervisors and presented\nmark during a break in the video deposition,             a chronology of events related to the hedge\nin violation of the Commission\xe2\x80\x99s Conduct                 fund\xe2\x80\x99s April 2001 trades in a security that the\nRegulation and Canon of Ethics. In light of              staff attorney believed evidenced insider trad-\nthe foregoing, this matter was referred to               ing by the hedge fund in advance of a positive\nmanagement for disciplinary action. No ac-               earnings announcement.\ntion had yet been taken by management with\nrespect to the OIG\xe2\x80\x99s recommendation at the                  Enforcement removed the staff attorney\nend of this semiannual reporting period.                 on September 1, 2005. On November 30,\n\n\n\n\n                                                   59\n\n\x0c2006, Enforcement closed the initial investiga-      investigation, uncovered a signi\xef\xac\x81cant body of\ntion of the hedge fund without taking any ac-        evidence of insider trading by the hedge fund\ntion, in part because it claimed that it had not     and others that the staff in the \xef\xac\x81rst investiga-\nfound evidence that an employee who had ac-          tion possessed but was unaware of, or could\ncepted a job with the hedge fund had ob-             have easily obtained. The OIG provided the\ntained any inside information regarding an           speci\xef\xac\x81cs of its \xef\xac\x81ndings regarding the evidence\nupcoming earnings announcement of his                uncovered by the regional of\xef\xac\x81ce and the re-\nformer employer.                                     mainder of its conclusions to senior SEC\n                                                     management.\n    New evidence regarding the hedge fund\xe2\x80\x99s\ntrading that had occurred in April 2001              Allegations of Unauthorized Disclosure\nemerged in December 2008 as a result of a            of Nonpublic Information (Report Nos.\nrecent divorce proceeding. On December 16,           OIG-542, OIG-551, and OIG-552)\n2008, Enforcement opened a new investiga-\ntion of possible insider trading by the same             The OIG received two outside complaints\nhedge fund in response to the new informa-           and one internal SEC referral in April,\ntion. In January 2009, the second hedge fund         August, and October 2010, each alleging un-\ninvestigation was transferred from SEC head-         authorized disclosures of nonpublic informa-\nquarters to an SEC regional of\xef\xac\x81ce.                   tion to the media by SEC staff during active\n                                                     enforcement investigations. The \xef\xac\x81rst com-\n     On May 27, 2010, the SEC announced a            plaint involved unauthorized disclosures of\nsettled civil enforcement action against the         nonpublic information during the investiga-\nhedge fund and its Chief Executive Of\xef\xac\x81cer            tion and litigation stages of a high-pro\xef\xac\x81le in-\n(CEO) in connection with insider trading.            sider trading case, and speci\xef\xac\x81cally alleged that\nThe SEC\xe2\x80\x99s action was predicated on the alle-         SEC staff anonymously leaked detailed in-\ngation that the hedge fund employee had pro-         formation about the SEC\xe2\x80\x99s investigation, in-\nvided the CEO with inside information that           cluding the identities of alleged co-\nhe had obtained from an employee of his              conspirators, to the media. The second com-\nformer employer.                                     plaint made similar allegations of leaks by\n                                                     SEC staff during the late stages of settlement\n     On January 5, 2011, the OIG issued its          negotiations with a hedge fund, speci\xef\xac\x81cally\nreport of investigation in this matter, \xef\xac\x81nding       alleging that one or more SEC staff members\nthat Enforcement staff who conducted the             improperly disclosed to a reporter nonpublic\n\xef\xac\x81rst investigation did pursue evidence of in-        information regarding an investigation of the\nsider trading. However, the staff believed           company, including information as speci\xef\xac\x81c as\nthere was insuf\xef\xac\x81cient evidence to support an         the proposed settlement amount. The third\naction without being able to identify the            complaint was an internal referral from man-\nsource of the inside information. The new            agement in an SEC regional of\xef\xac\x81ce, requesting\ninformation that was discovered during the           that the OIG investigate an allegation that\ndivorce proceeding provided that evidence.           SEC staff provided information to a reporter\nThe OIG found that Enforcement staff con-            about a proposed de\xef\xac\x81ciency letter that was\nducting the \xef\xac\x81rst investigation had issued a          drafted but never sent to a hedge fund. After\nsubpoena that encompassed the evidence, but          careful review, the OIG opened investigations\nthat this evidence was not produced to the           into each of the aforementioned complaints\nstaff.                                               and referral to determine whether SEC staff\n                                                     had made unauthorized disclosures of non-\n   Apart from the new evidence, the OIG              public information.\nfound that the SEC regional of\xef\xac\x81ce, in con-\nducting its own independent and thorough               In its investigation of these allegations, the\n                                                     OIG obtained and reviewed over 750,000\n\n                                                   60\n\n\x0ce-mails and supporting documents from over                   On March 30, 2011, the OIG issued its\n15 current and former SEC employees in both             report of investigation in these matters, rec-\nSEC headquarters and regional of\xef\xac\x81ces. The               ommending that the SEC, in the most eco-\nOIG also reviewed additional supporting ma-             nomically ef\xef\xac\x81cient manner possible, employ\nterials including, but not limited to, internal         technology that will enable the agency to bet-\nmemoranda and numerous press articles. The              ter track employees\xe2\x80\x99 communications. Be-\nOIG requested and obtained BlackBerry\xc2\xae                  cause the report of investigation was issued\ntelephone records from the SEC, issued sev-             just prior to the end of the semiannual report-\neral subpoenas to major cellular phone service          ing period, no action had yet been taken by\ncarriers after obtaining employee consent, and          management with respect to the OIG\xe2\x80\x99s\ntook sworn testimony from several current and           recommendation.\nformer SEC employees.\n                                                        Allegation of Illegal and Unauthorized\n     The OIG found that, with respect to the            Disclosure of Employment Status by\nallegations of the de\xef\xac\x81ciency letter leak, the           Regional Office Senior Official (Report\nletter, and details regarding the letter, were          No. OIG-549)\nleaked to the press and that the source must\n                                                            On March 10, 2010, the OIG opened this\nhave been someone at the SEC who believed\n                                                        investigation after receiving a complaint from\nincorrectly that the letter had been issued to\n                                                        a former SEC attorney who was terminated\nthe registrant when, in fact, it had not been\n                                                        from employment with a regional of\xef\xac\x81ce in\nissued. However, the OIG found no evidence\n                                                        2009. The former SEC attorney alleged that\nin the e-mails reviewed or witness interviews\n                                                        the senior of\xef\xac\x81cial disclosed his employment\nconducted to identify the source of the leaked\n                                                        \xe2\x80\x9cstatus\xe2\x80\x9d to others outside the agency, that the\ninformation.\n                                                        disclosure damaged his reputation and had an\n                                                        adverse impact on his ability to respond to the\n    With respect to the allegations regarding\n                                                        SEC\xe2\x80\x99s notice of proposed termination, and\nthe leak of the proposed settlement with the\n                                                        that this disclosure also constituted a violation\nhedge fund, the OIG again found that there\n                                                        of the Privacy Act of 1974 (Privacy Act).\nwas a leak of nonpublic information to the\nmedia and that the source of this leak must\n                                                            During the course of this investigation, the\nhave been someone within the SEC. The\n                                                        OIG took the sworn testimony of the former\nOIG found, however, no evidence in the\n                                                        SEC attorney, the relevant regional of\xef\xac\x81ce sen-\ne-mails reviewed or witness interviews con-\n                                                        ior of\xef\xac\x81cial, and the outside party to whom the\nducted to identify the source of the leak. The\n                                                        disclosure was allegedly made. In addition,\nOIG also found that the leak may have come\n                                                        the OIG obtained and reviewed relevant\nfrom someone within the SEC who was not\n                                                        e-mail records and the former SEC attorney\xe2\x80\x99s\ndirectly involved with either the investigation\n                                                        electronic of\xef\xac\x81cial personnel folder.\nor settlement.\n                                                            The OIG found that after the former at-\n    With respect to the insider trading matter,\n                                                        torney \xef\xac\x81led a complaint against the regional\nthe OIG found that nonpublic information\n                                                        of\xef\xac\x81ce senior of\xef\xac\x81cial with the SEC\xe2\x80\x99s Chief\nabout the insider trading case was leaked to\n                                                        Freedom of Information Act and Privacy Act\nthe media, but found no evidence that the\n                                                        Of\xef\xac\x81cer (Privacy Act Of\xef\xac\x81cer), the Privacy Act\nsource of the leaks was an SEC employee.\n                                                        Of\xef\xac\x81cer reviewed the former SEC attorney\xe2\x80\x99s\nThe OIG found it equally likely that the\n                                                        claim and responded that he could not deter-\nsource of the leaks was someone outside the\n                                                        mine whether the alleged disclosure consti-\nSEC.\n                                                        tuted a Privacy Act violation because it was\n                                                        \xe2\x80\x9cnot clear that whatever information may\n\n\n                                                  61\n\n\x0chave been disclosed was from a system of re-               The OIG also obtained numerous evidentiary\ncords covered by the Privacy Act.\xe2\x80\x9d The OIG                 documents related to the case from the SEC\ninvestigation further revealed that the regional           employee whose checks had been stolen.\nof\xef\xac\x81ce senior of\xef\xac\x81cial did disclose to an outside\nparty, who was a friend of the former SEC                      The OIG learned that in or about July\nattorney, that the regional of\xef\xac\x81ce would be ask-            2010, an OIT contractor upgraded the vic-\ning the former SEC attorney to leave the                   timized SEC employee\xe2\x80\x99s computer. The em-\nSEC, but gave no details regarding the pro-                ployee stated that his checkbook was on his\nposed termination. The OIG also found that                 desk when he left his of\xef\xac\x81ce while his computer\nthe outside party later learned details about              was being upgraded. According to the em-\nthe termination from the former SEC attor-                 ployee, an unauthorized debit payment was\nney himself. Moreover, the OIG determined                  made from his bank account to a utilities\nthat the former SEC attorney\xe2\x80\x99s friend, to                  company in August 2010. The OIG learned\nwhom the disclosure was made, still held him               that the utilities company account on which\nin high professional regard after the disclosure.          the payment was made belonged to a then-\n                                                           SEC contractor. The employee further stated\n    The OIG concluded that the disclosure of               that two other unauthorized payments were\nthe termination to an outside party, albeit                made from his bank account in September\nwell-intentioned, may have been in violation               2010.\nof the agency\xe2\x80\x99s general policy against \xe2\x80\x9cpub-\nlish[ing] or mak[ing] available to any person                   The OIG discovered during the course of\nmatters that are . . . related solely to the . . .         its investigation that the subject SEC contrac-\ntermination . . . of any Commission em-                    tor was terminated from the SEC\xe2\x80\x99s contract in\nployee.\xe2\x80\x9d However, a de\xef\xac\x81nitive determination                September 2010, for \xe2\x80\x9cunreliable attendance.\xe2\x80\x9d\nof whether the regional of\xef\xac\x81ce senior of\xef\xac\x81cial               On October 28, 2010, at the MPD detective\xe2\x80\x99s\nviolated the Privacy Act is a matter that is ap-           request, the OIG faxed to the detective the\npropriately within the purview of the Privacy              former SEC contractor\xe2\x80\x99s contact information\nAct Of\xef\xac\x81cer.                                                and a copy of the stolen check.\n\n    The OIG issued its report of investigation                  On November 17, 2010, the OIG issued\nto management on March 2, 2011. The re-                    its report of investigation in this matter, \xef\xac\x81nd-\nport was also referred back to the Privacy Act             ing that the evidence showed that the former\nOf\xef\xac\x81cer for a determination, based on the full              SEC contractor had stolen a checkbook from\nevidentiary record developed by the OIG, of                an SEC employee and forged the employee\xe2\x80\x99s\nwhether the disclosure violated the Privacy                signature to cash a check and pay his personal\nAct.                                                       bills. Because the subject SEC contractor had\n                                                           already been removed from his contract posi-\nTheft by a Headquarters Contractor                         tion at the SEC, the OIG referred its report to\n(Report No. OIG-548)                                       management for informational purposes. The\n                                                           OIG also followed up with the MPD with re-\n    On October 4, 2010, OIG opened an in-                  spect to the potential arrest and conviction of\nvestigation as a result of information that an             the subject based on D.C. Code theft and\nemployee had personal checks stolen from his               fraud charges.\nof\xef\xac\x81ce. The OIG contacted the Washington,\nD.C. Metropolitan Police Department (MPD)                  Investigation into Unauthorized\nthe same day and conducted a joint interview               Disclosure of Nonpublic Information\nof the SEC employee with MPD Of\xef\xac\x81cers.                      (Report No. OIG-546)\nDuring the course of the investigation, the\nOIG communicated with an MPD Check and                         In 2010, the OIG conducted an investiga-\nFraud Unit detective on multiple occasions.                tion, OIG-534, into allegations of improper\n\n                                                     62\n\n\x0ccoordination between the SEC and other gov-             SEC computers that were blocked by the\nernmental entities concerning the SEC\xe2\x80\x99s en-             agency\xe2\x80\x99s Internet \xef\xac\x81lter, as well as instances\nforcement action against Goldman Sachs &                where they successfully accessed pornography\nCo. (Goldman). In the course of OIG-534,                or inappropriate material. Depending on the\nthe OIG found e-mails suggesting that an SK-            frequency of the accesses and attempted ac-\n16 headquarters attorney had shared nonpub-             cesses and the nature of the materials ac-\nlic information concerning Enforcement\xe2\x80\x99s in-            cessed, the OIG conducted a full investigation\nvestigation of Goldman with a friend outside            or a more limited inquiry as discussed below.\nthe agency. After the conclusion of OIG-534,\nthe OIG opened this investigation on October                Beginning on October 4, 2010, the OIG\n4, 2010, to further analyze whether the attor-          conducted an investigation (OIG-547) into\nney had improperly shared nonpublic infor-              information showing that an SK-14 staff ac-\nmation with anyone outside the SEC.                     countant at SEC headquarters had used his\n                                                        SEC-assigned computer hundreds of times\n    The OIG searched the e-mails of employ-             attempting to access Internet pornography\nees who may have sent, received, or been cop-           resulting in access denials. The information\nied on e-mails relevant to the current investi-         obtained from OIT also showed that the staff\ngation for the pertinent time period. The               accountant successfully accessed numerous\nOIG also reviewed the portions of the tran-             sexually-explicit photographs from his SEC\nscript of the attorney\xe2\x80\x99s testimony taken during         computer, including graphic depictions of\nOIG-534 that addressed his communications               sexual acts. Many of these sexually-explicit\nwith his friend. In addition, the OIG inter-            photographs were accessed during normal\nviewed the attorney\xe2\x80\x99s friend and reviewed a             SEC work hours.\ndeclaration he provided concerning his com-\nmunications with the attorney.                              The OIG had scheduled the sworn testi-\n                                                        mony of the staff accountant during the\n    The OIG issued its report of investigation          course of the investigation. When initially\nto management on December 17, 2010. Al-                 contacted by the OIG, the staff accountant\nthough the OIG investigation found that the             did not deny that he had viewed inappropriate\nattorney had shared with his friend informa-            material on his work computer, but asked the\ntion that the SEC would make two an-                    OIG to keep in mind that he reviewed the\nnouncements on April 16, 2010, that might               websites of private companies in connection\nhave signi\xef\xac\x81cant but opposite effects on the             with his Commission work. Prior to the date\nSEC\xe2\x80\x99s image, the OIG investigation did not              of the scheduled testimony, the staff account-\n\xef\xac\x81nd suf\xef\xac\x81cient evidence to conclude that the             ant\xe2\x80\x99s union representative informed the OIG\nattorney had shared any detailed nonpublic              that the staff accountant was asserting his\ninformation with his friend or anyone else out-         Fifth Amendment privilege against self-\nside the SEC.                                           incrimination and was declining to testify in\n                                                        the OIG\xe2\x80\x99s investigation.\nMisuse of Computer Resources and\nOfficial Time to View Pornography                           The OIG issued a report of investigation\n(Report No. OIG-547 and PIs 11-05,                      to management on October 22, 2010, detail-\n11-06, and 11-07)                                       ing the results of the investigation and \xef\xac\x81nding\n    During this semiannual reporting period,            that the staff accountant\xe2\x80\x99s inappropriate use of\nthe OIG continued to receive from the OIT               the Internet violated Commission policies and\nInformation Security Group lists of SEC em-             rules, as well as the government-wide stan-\nployees or contractors who had numerous at-             dards of ethical conduct. The OIG referred\ntempts to access pornographic websites from             the matter to management for disciplinary\n\n\n                                                  63\n\n\x0caction against the staff accountant, up to and       OIG report was instead provided to manage-\nincluding removal from federal service. As of        ment for informational purposes.\nthe end of the reporting period, management\nhad proposed the staff accountant\xe2\x80\x99s removal.              In a second matter involving another SK-\n                                                     14 headquarters attorney, the evidence\n    The OIG also conducted inquiries during          showed that this attorney (PI 11-07), while us-\nthe reporting period into the misuse of SEC          ing his SEC computer, had also received hun-\ncomputer resources to view pornography by            dreds of access request denials for websites\ntwo SEC employees and one contractor. In             classi\xef\xac\x81ed as pornography during a two-month\neach of these matters, the OIG reviewed and          period. A review of the information provided\nanalyzed the data provided by OIT, including         by the OIT Security Group further revealed\nforensic analysis reports, and records re\xef\xac\x82ecting     numerous instances, over a prolonged period\nthe individuals\xe2\x80\x99 completion of information           of time, in which the attorney successfully ac-\ntechnology security awareness training, which        cessed, using his SEC-assigned computer, in-\nincluded speci\xef\xac\x81c information on the SEC\xe2\x80\x99s            appropriate images of partially or fully nude\nrules pertaining to appropriate use of agency        women. Speci\xef\xac\x81cally, the evidence showed that\ncomputing and network facilities.                    during the limited time periods examined, the\n                                                     employee had accessed from his SEC-assigned\n    In one matter involving an SK-14 head-           computer approximately 70 images of par-\nquarters attorney (PI 11-05), the evidence           tially or fully nude women. The OIG at-\nshowed that the attorney, while using his SEC        tempted to schedule the attorney\xe2\x80\x99s testimony\ncomputer, had received hundreds of access            during the course of the investigation. How-\nrequest denials for websites classi\xef\xac\x81ed as por-       ever, the attorney\xe2\x80\x99s union representative noti-\nnography during a two-month period. A re-            \xef\xac\x81ed the OIG that the attorney was declining\nview of the information provided by the OIT          to testify before the OIG concerning alleged\nSecurity Group also revealed many instances          inappropriate computer use.\nin which the attorney had successfully ac-\ncessed pornographic and sexually-explicit                The OIG issued a memorandum report to\nwebsites from his SEC-assigned computer.             management in this matter on January 13,\nThe OIT Security Group\xe2\x80\x99s analysis of Inter-          2011. The OIG found that the evidence re-\nnet logs also showed that the attorney had per-      viewed established that the attorney\xe2\x80\x99s inap-\nformed searches for pornographic material,           propriate use of the Internet violated Com-\nand that much of the inappropriate activity          mission policies and rules, as well as the\noccurred during normal SEC work hours.               government-wide standards of ethical con-\n                                                     duct. The OIG referred the matter to man-\n     During its inquiry, the OIG scheduled the       agement for disciplinary action, up to and in-\nattorney\xe2\x80\x99s sworn testimony but, before that          cluding removal. Subsequent to the issuance\ntestimony took place, the attorney noti\xef\xac\x81ed the       of the OIG\xe2\x80\x99s report, the OIG received from\nOIG that he was resigning from the SEC. As           OIT additional evidence showing that the at-\na consequence, the OIG did not proceed with          torney had accessed from his SEC-assigned\nthe attorney\xe2\x80\x99s testimony and issued a memo-          computer numerous additional images of\nrandum report to management on January 11,           nude women at periods of time other than\n2011. In that report, the OIG indicated that         those examined in the OIG\xe2\x80\x99s initial inquiry,\nbased upon the evidence obtained during the          and forwarded this information to manage-\ninquiry, the OIG would have referred the at-         ment. As of the end of the reporting period,\ntorney for disciplinary action, up to and in-        management had proposed the employee\xe2\x80\x99s\ncluding removal. In light of the attorney\xe2\x80\x99s          removal from federal service.\nthen-impending resignation, however, the\n\n\n                                                   64\n\n\x0c     In a third matter involving an SEC con-             cial, during part of the time period in which\ntractor (PI 11-06), the evidence showed that             the regional of\xef\xac\x81ce investigated a publicly-\nthe contractor had accessed numerous                     traded company, participated in an independ-\nsexually-explicit images from his SEC-                   ent investigation of the company after he had\nassigned computer, including graphic depic-              left the SEC for private practice.\ntions of sexual acts. The OIG took the sworn\ntestimony of the contractor to inquire about                 In the course of this inquiry, the OIG\nhis Internet use. During that testimony, the             searched multiple internal SEC databases for\ncontractor admitted that he accessed porno-              relevant records concerning all SEC investiga-\ngraphic images during work hours from his                tions of the company, and reviewed relevant\nSEC-assigned computer, stating that he had               records for the regional of\xef\xac\x81ce\xe2\x80\x99s investigations\nbeen doing so for about a year or a year and a           of the company. The OIG obtained several\nhalf. Upon being shown particular images                 nonpublic internal memoranda relating to the\nfound on the hard drive of his SEC computer              regional of\xef\xac\x81ce\xe2\x80\x99s investigations of the company.\nthat depicted nude women and a variety of                We also searched the e-mails of several cur-\nsexual acts, the contractor admitted he had              rent regional of\xef\xac\x81ce employees who may have\naccessed these images. The contractor further            sent, received, or been copied on e-mails rele-\nadmitted in his testimony that he was aware of           vant to this inquiry for the pertinent time\nthe prohibition on viewing pornographic or               period.\nsexually-explicit images from SEC computers,\nhad taken the required information technol-                  Further, we interviewed two senior head-\nogy security awareness training courses, and             quarters of\xef\xac\x81cials to obtain their specialized\nhad received notices informing users of SEC              knowledge of the circumstances surrounding\ncomputing systems that it was inappropriate to           the allegation. Speci\xef\xac\x81cally, the OIG inter-\nview Internet pornography from work com-                 viewed the SEC Ethics Counsel in order to\nputers.                                                  obtain her opinion as to whether the facts\n                                                         found by the OIG in this inquiry potentially\n     The OIG issued a memorandum report to               violated any ethics statutes, regulations, or\nmanagement in this matter on January 6,                  rules. The OIG also interviewed the SEC\n2011, \xef\xac\x81nding that the contractor\xe2\x80\x99s inappropri-           Secretary to verify whether the Of\xef\xac\x81ce of the\nate use of the Internet violated Commission              Secretary\xe2\x80\x99s records re\xef\xac\x82ected any letters sent\npolicies and rules. The OIG referred the mat-            from the former senior of\xef\xac\x81cial concerning the\nter for disciplinary action, up to and including         company in 2005, 2006, or 2007, pursuant to\nremoval from the contract. In response to the            the Commission\xe2\x80\x99s Conduct Regulation.\nOIG\xe2\x80\x99s report, management had the contractor\nescorted from the building and removed from                  The OIG found that the former senior\nthe SEC contract.                                        of\xef\xac\x81cial made a communication or appearance\n                                                         before an employee of the SEC in connection\nOther Inquiries Conducted                                with his representation of the company\xe2\x80\x99s audit\n                                                         committee and the SEC\xe2\x80\x99s options backdating\n  Failure to Submit a Conflict-of-                       investigation of the company. However, the\n  Interest Letter by Former Regional                     SEC investigation of the company\xe2\x80\x99s options\n  Office Senior Official (PI 10-38)                      backdating appeared to deal with a suf\xef\xac\x81ciently\n    The OIG opened this preliminary inquiry              different set of issues and facts from the earlier\non May 6, 2010, after an interview with an               SEC investigation of the company\xe2\x80\x99s revenue\nindividual who requested con\xef\xac\x81dential infor-              recognition practices so as not to be consid-\nmant status. This con\xef\xac\x81dential informant al-              ered one \xe2\x80\x9cparticular matter\xe2\x80\x9d for purposes of a\nleged that a former regional of\xef\xac\x81ce senior of\xef\xac\x81-           federal con\xef\xac\x82ict-of-interest statute.\n\n\n                                                   65\n\n\x0c    The OIG did \xef\xac\x81nd, however, that the for-         the SEC network for a period of almost a\nmer senior of\xef\xac\x81cial violated a provision of the      year.\nCommission\xe2\x80\x99s Conduct Regulation by com-\nmunicating with regional of\xef\xac\x81ce employees in              The OIG inquiry found that for the pe-\nconnection with his representation of the           riod of time examined, there was a pattern of\ncompany\xe2\x80\x99s audit committee within two years          little or no access to the SEC server from the\nof his departure from the SEC without \xef\xac\x81ling a       employee\xe2\x80\x99s remote computer during the ma-\nstatement with the SEC Secretary, as required       jority of the 44 days that she allegedly tele-\nby the Conduct Regulation.                          worked, despite the fact that the employee re-\n                                                    quired access to a computer to perform her\n    On December 21, 2010, based upon the            job duties. Our inquiry also revealed that the\nforegoing, the OIG referred the matter to the       employee had improperly coded time and at-\nCommission\xe2\x80\x99s Ethics Counsel for considera-          tendance work hours on numerous occasions.\ntion as a supplement to a previous referral\nconcerning this former senior of\xef\xac\x81cial to the             We further concluded that the employee\xe2\x80\x99s\nBar Counsel of\xef\xac\x81ces in two jurisdictions. In         supervisor did not adequately monitor the\naddition, the OIG referred the matter to the        time and attendance submissions or telework\nSEC General Counsel for consideration of            activity. We also determined that the supervi-\nwhether to recommend that the former senior         sor acknowledged that employees are required\nof\xef\xac\x81cial be denied the privilege of appearing or     to code telework hour entries distinctly from\npracticing before the Commission as a result        regular in-of\xef\xac\x81ce work hours in the time and\nof: (1) the former senior of\xef\xac\x81cial\xe2\x80\x99s apparent        attendance system used by the SEC, and that\nviolation of the SEC\xe2\x80\x99s Conduct Regulation;          he speci\xef\xac\x81cally asked this employee to be care-\nand (2) the senior of\xef\xac\x81cial\xe2\x80\x99s apparent violation     ful to code her time accurately. However, we\nof the Rules of Professional Conduct of two         found that the supervisor did not suf\xef\xac\x81ciently\njurisdictions, as was found in a previous OIG       follow up with the employee even after she\ninvestigation.                                      made numerous errors when coding her time.\n\n  Falsification of Time and Attendance                  On December 23, 2010, the OIG issued a\n  Records, Abuse of Telework and                    memorandum report and referred the matter\n  Lack of Supervisory Review                        to management for consideration of discipli-\n  (PI 10-05)                                        nary or other management-based action\n    The OIG opened this inquiry upon re-            against the subject employee and her supervi-\nceipt of an anonymous complaint alleging            sor. We also recommended that the em-\nthat a regional of\xef\xac\x81ce staff member had regu-        ployee\xe2\x80\x99s existing leave balance be adjusted to\nlarly falsi\xef\xac\x81ed her time and attendance records      appropriately record the time she worked in\nto indicate excess work hours, and was not          accordance with the \xef\xac\x81ndings in the report.\nactually teleworking during the hours that she\nclaimed telework in her time and attendance            Based on the OIG\xe2\x80\x99s referral, the SEC pro-\nsubmissions.                                        posed a suspension from federal service for the\n                                                    employee, while no action had yet been taken\n    The OIG took sworn testimony of the             regarding the supervisor at the end of the re-\nsubject employee as well as her supervisor. We      porting period.\nalso examined the subject employee\xe2\x80\x99s current\nposition description, e-mail records, building          Improper Travel Expenditures and\n                                                        Lack of Supervisory Review\nentry logs, personnel records, time and atten-          (PI 09-113)\ndance records, and telework-related documen-\ntation. We also received and analyzed records           The OIG opened this inquiry after receiv-\nof the employee\xe2\x80\x99s remote computer access to         ing an anonymous complaint alleging that\n\n                                                  66\n\n\x0cfour unnamed regional of\xef\xac\x81ce staff members               these excesses were exacerbated by poor re-\nreceived reimbursement for lodging and per              ceipt recordkeeping. Moreover, the OIG con-\ndiem to which they were not entitled in con-            cluded that this SEC employee improperly\nnection with of\xef\xac\x81cial travel to Washington,              charged the government for a baggage fee as-\nD.C., in August 2009. The complaint asserted            sessed due to personal purchases made while\nthat the subject staff should not have been             in Washington, D.C. Finally, we concluded\npaid during the period between training con-            that the manager\xe2\x80\x99s supervisors did not prop-\nferences held at SEC headquarters over two              erly review these excessive expenses prior to\nconcurrent weeks. Speci\xef\xac\x81cally, the complaint            approving them for reimbursement.\nalleged that the cost to stay in Washington,\nD.C., between conferences exceeded the cost                  The OIG issued its memorandum report\nof travel back and forth from the staff \xe2\x80\x99s home         to management on November 23, 2010, rec-\nof\xef\xac\x81ce to Washington, D.C., to attend the con-           ommending disciplinary and/or management\nferences. The complaint also claimed that               action against the two managers. Addition-\nthese employees inappropriately claimed tele-           ally, the OIG recommended that (1) the travel\nwork during the period they were away from              expense overpayments be repaid to the gov-\ntheir permanent duty stations. Based upon a             ernment, (2) the managers and their supervi-\nreview of applicable training and travel re-            sors receive training on the FTR and SEC\ncords, we determined that two regional of\xef\xac\x81ce            travel policies, and (3) the agency establish a\nmanagers had been reimbursed for travel ex-             policy regarding when to consider the use of a\npenses for the days between the two training            privately owned vehicle for of\xef\xac\x81cial travel. As\nsessions.                                               of the end of the reporting period, the agency\n                                                        determined that both managers should repay\n    In the course of this inquiry, the OIG ob-          to the government a portion of the identi\xef\xac\x81ed\ntained and reviewed the pertinent of\xef\xac\x81cial               excess reimbursements, but decided not to\ntravel authorization and expense documents.             take any disciplinary action against them.\nThe OIG took sworn testimony of the two                 Corrective action regarding the OIG\xe2\x80\x99s policy\nregional of\xef\xac\x81ce managers and also interviewed            recommendation was pending.\ntheir respective supervisors. We obtained and\nreviewed e-mails and SEC headquarters                     Disclosure of Nonpublic Personnel\nbuilding entry and exit logs for the two re-              Information and Lack of Candor at\ngional of\xef\xac\x81ce managers for the pertinent period            Headquarters (PI 11-18)\nof time. We also researched typical travel\ncosts associated with travel to and around                  On January 19, 2011, the OIG opened an\nWashington, D.C.                                        inquiry as a result of information received\n                                                        from a headquarters employee. The com-\n    The OIG inquiry found that the two re-              plainant alleged that an employee in her of\xef\xac\x81ce\ngional of\xef\xac\x81ce managers submitted improper                had divulged nonpublic information about the\ntravel expenses in connection with their of\xef\xac\x81-           complainant\xe2\x80\x99s disability to an SEC coworker.\ncial travel to Washington, D.C. Speci\xef\xac\x81cally,\none manager\xe2\x80\x99s selection of privately owned                  The OIG took the sworn testimony of\nvehicle transportation was inappropriate be-            multiple witnesses and reviewed numerous\ncause the excess costs to the SEC were not              e-mails. Several SEC employees gave consis-\njusti\xef\xac\x81able under the Federal Travel Regulation          tent testimony that the subject employee\n(FTR). We also concluded that this traveler\xe2\x80\x99s           communicated with a coworker about the\nsupervisor insuf\xef\xac\x81ciently reviewed and improp-           complainant having been hired under an\nerly authorized this costly expenditure. The            authority used for applicants with disabilities\nOIG further found that the other manager\xe2\x80\x99s              and that he did not believe she had a valid\ntaxicab fare receipts were likely in\xef\xac\x82ated, and          disability. Such testimony was also corrobo-\n\n\n                                                  67\n\n\x0crated by a contemporaneous memorandum               addition, the OIG reviewed the former em-\nand e-mails. The subject employee claimed in        ployee\xe2\x80\x99s e-mail records and obtained copies of\nhis sworn testimony that he never said any-         invoices from clothing merchant suppliers.\nthing to the coworker about the complainant\xe2\x80\x99s       Further, the OIG subpoenaed and reviewed\ndisability.                                         the SRWA\xe2\x80\x99s bank statements and other docu-\n                                                    ments.\n    Although the OIG did not uncover con-\nclusive evidence of how the subject employee            In his testimony before the OIG, the for-\nlearned nonpublic information regarding the         mer employee stated that he worked in the\ncomplainant\xe2\x80\x99s disability, the OIG found that        SRWA store and was in charge of buying\nthere was substantial evidence that the subject     merchandise. He further stated that he was\ndid know and reveal nonpublic personnel in-         owed the money in question because he had\nformation to another SEC employee. The              used his personal credit card to purchase mer-\nOIG investigation further found that the sub-       chandise from a vendor on the SRWA\xe2\x80\x99s behalf.\nject provided false statements and lacked can-      Therefore, before he left the SEC, he wrote a\ndor in numerous aspects of his sworn testi-         check from the SRWA account to himself.\nmony before the OIG.                                The OIG determined that between 2006 and\n                                                    2010, the former employee used his personal\n    Accordingly, the OIG found that the sub-        credit cards to purchase over $128,700 of\nject violated a criminal statute by knowingly       SRWA store merchandise, and used the\nand willfully making a material false statement     SRWA checking account to reimburse himself.\nunder oath in an of\xef\xac\x81cial federal inquiry or in-     The OIG found that the credit cards the for-\nvestigation, and lacked candor in his testi-        mer employee used for SRWA activities pro-\nmony before the OIG.                                vided cash back rewards, and he admitted re-\n                                                    ceiving rewards points or cash back for pur-\n    In light of the foregoing, on February 11,      chases he made for the SRWA store.\n2011, the OIG referred this matter to man-\nagement for disciplinary action, up to and in-          Based on the evidence reviewed in this in-\ncluding dismissal. We also referred the matter      quiry, the OIG concluded that the former\nto the DOJ, which declined prosecution. As of       SEC employee improperly wrote a check to\nthe end of the reporting period, management         himself using the SRWA account as reim-\nhad placed the employee on administrative           bursement for the purchases he made on be-\nleave and proposed his removal from federal         half of the SRWA store, and that he also im-\nservice.                                            properly received personal bene\xef\xac\x81ts from the\n                                                    use of his credit card for SRWA purchases.\n  Allegation of Misappropriation of                 The OIG referred the receipt of personal\n  Funds from the SEC Recreation and                 bene\xef\xac\x81ts to the DOJ, which declined prosecu-\n  Welfare Association (PI 10-50)                    tion.\n     On June 16, 2010, the OIG received a let-\n                                                        The OIG further found that there was a\nter from an SEC headquarters employee, al-\n                                                    lack of effective oversight of the SRWA and\nleging that a former headquarters employee,\n                                                    that no procedures or regulations had been\nwho had been involved with the SEC\xe2\x80\x99s Rec-\n                                                    established concerning the SRWA\xe2\x80\x99s operations\nreation and Welfare Association (SRWA) store,\n                                                    or the SEC\xe2\x80\x99s oversight of those operations.\ncashed an SRWA check for several thousand\n                                                    Therefore, the OIG recommended that OHR\ndollars just one day prior to his leaving the\n                                                    establish and implement bylaws for the SRWA\nSEC. In conducting this inquiry, the OIG\n                                                    and effectively oversee the operation of the\ntook the former employee\xe2\x80\x99s sworn testimony\n                                                    SRWA, which would include a \xef\xac\x81nancial con-\nand interviewed a senior OHR of\xef\xac\x81cial. In\n                                                    trol system for the SRWA.\n\n                                                  68\n\n\x0c    The OIG issued its memorandum report                 information for improper purposes, we did\nto management on December 16, 2010, for                  \xef\xac\x81nd that the \xef\xac\x81rst attorney could have exer-\nreview and implementation of our recom-                  cised more caution in undertaking such a\nmendations, which remained pending as of                 con\xef\xac\x81dential search.\nthe end of the reporting period.\n                                                             Based on our \xef\xac\x81ndings, the OIG issued a\n  Inappropriate Use of a Commission                      memorandum report on March 4, 2011, rec-\n  Database by a Headquarters                             ommending that management consider coun-\n  Attorney (PI 10-62)                                    seling and/or training for the \xef\xac\x81rst attorney.\n                                                         Because the OIG\xe2\x80\x99s memorandum report was\n    The OIG opened this inquiry on July 19,\n                                                         issued just prior to the end of the semiannual\n2010, based on evidence found in a previous\n                                                         reporting period, no action had yet been taken\nOIG investigation. We conducted this inquiry\n                                                         by management with respect to the OIG\xe2\x80\x99s\nto determine whether a headquarters attorney\n                                                         recommendation.\nimproperly sent nonpublic information ob-\ntained from a Commission database to an-\n                                                           Allegation of Conflicts of Interest by\nother SEC attorney. The OIG found in a                     Former Regional Office Senior\nprior investigation that the second attorney               Attorney (PI 10-53)\nreceived this nonpublic information about a\nparty with whom he was personally con-                       The OIG opened this preliminary inquiry\nnected, in violation of SEC policy. Based on             on June 25, 2010, in response to information\nthe OIG\xe2\x80\x99s prior report of investigation in that          contained in an anonymous complaint. The\nmatter, the second attorney was terminated               complaint alleged that shortly after a senior\nfor this and other violations of applicable              attorney left the SEC, he began representing a\npolicies and rules.                                      defendant in a matter that was under SEC\n                                                         investigation while the senior attorney was\n    In the course of this inquiry, the OIG ob-           employed at the SEC. In addition, the com-\ntained and reviewed the \xef\xac\x81rst attorney\xe2\x80\x99s inter-           plainant alleged a con\xef\xac\x82ict of interest arising\nnal SEC database usage history and e-mail                from the fact that the former senior attorney\nrecords for the pertinent time period. We also           and another SEC attorney were named as de-\ntook the \xef\xac\x81rst attorney\xe2\x80\x99s sworn testimony and             fendants in a civil action unrelated to the case\nreviewed the transcript of the sworn testimony           in question.\nof the second attorney, which had been taken\nin the previous OIG investigation.                           The OIG reviewed and analyzed the ap-\n                                                         plicable statutory, regulatory, and state bar\n    As a result of this inquiry into the actions         rule provisions, as well as SEC Ethics Of\xef\xac\x81ce\nof the \xef\xac\x81rst attorney, the OIG found that he              guidance relevant to post-employment repre-\naccessed nonpublic information from a secure             sentation. We reviewed SEC databases that\ndatabase at the request of the second attorney,          identify and track complaints and investiga-\nwho claimed that the information was for of\xef\xac\x81-            tions, and obtained copies of SEC Orders and\ncial SEC business. We further found that the             Litigation Releases in the relevant cases. We\n\xef\xac\x81rst attorney provided this nonpublic informa-           further contacted the SEC\xe2\x80\x99s Ethics Counsel\ntion to the second attorney, even though they            and obtained a copy of a notice of representa-\nhad not worked on any matters together and               tion submitted by the former senior attorney.\nthe \xef\xac\x81rst attorney did not ask any speci\xef\xac\x81c ques-          We also interviewed three current SEC attor-\ntions about the matter to which the informa-             neys, who were familiar with the investigation\ntion pertained. While we did not \xef\xac\x81nd evi-                and litigation in question.\ndence that the \xef\xac\x81rst attorney had any knowl-\nedge that the second attorney was seeking this\n\n\n                                                   69\n\n\x0c     Our inquiry found that prior to undertak-           role in awarding SEC contracts to that com-\ning representation of the defendant, the for-            pany.\nmer senior attorney had \xef\xac\x81led the necessary\nnotice of representation with the SEC pursu-                 The OIG\xe2\x80\x99s inquiry found no evidence of a\nant to Commission rules, and that his request            personal relationship between the manager\nfor clearance to represent the defendant was             and of\xef\xac\x81cials for the outside company. The\napproved. We found no evidence that he had               manager testi\xef\xac\x81ed that he became familiar with\nparticipated personally and substantially in, or         the company only through his work at the\nhad any of\xef\xac\x81cial responsibility for, the related          SEC. Our e-mail review also disclosed no\ninvestigation while he was at the SEC. We                evidence of a personal relationship between\nalso found that the former senior attorney was           the manager and the company executive iden-\nnot subject to the one-year restriction on               ti\xef\xac\x81ed in the complaint. In fact, the e-mails\ncommunicating with or appearing before the               reviewed showed that the manager had de-\nagency because the SEC had requested and                 clined a lunch invitation from the executive,\nobtained an exemption from the one-year re-              indicating that he refrained from having lunch\nstriction for senior SK-level SEC personnel,             with vendors as a matter of policy to avoid\nand this exemption covered the former SEC                creating any improper impression.\nattorney.\n                                                             The inquiry also did not \xef\xac\x81nd evidence that\n    Finally, we found that the complainant\xe2\x80\x99s             the manager improperly steered business to\nallegation of a con\xef\xac\x82ict of interest arising from         the company. We did learn during our in-\nthe fact that the former senior attorney and             quiry that the manager had recused himself\nanother SEC attorney were named as defen-                from the speci\xef\xac\x81c selection process for an SEC\ndants in a civil action unrelated to the case in         blanket purchase agreement for reasons unre-\nquestion was not substantiated. Accordingly,             lated to the company mentioned in the com-\nour inquiry found insuf\xef\xac\x81cient evidence of                plaint, but that he did not seek any ethics ad-\nmisconduct by the former senior attorney, and            vice in connection with this recusal. We sug-\nwe closed this inquiry on January 6, 2011.               gested that the SEC Ethics Counsel meet with\n                                                         the manager to counsel him concerning the\n  Complaint of Conflict of Interest in                   importance of seeking ethics advice, as well as\n  the Awarding of Contracts (PI 09-97)                   the appropriate process for recusal in the fu-\n                                                         ture, and the Ethics Counsel agreed to do so.\n     The OIG conducted an inquiry into a\ncomplaint received though the OIG\xe2\x80\x99s Com-                   Allegations of Improper Relationship\nplaint Hotline, alleging that an SEC manager               Between a Headquarters Senior\nhad improperly steered business to an outside              Manager and an SEC Contractor\ncompany due to a personal relationship with                (PI 10-33)\nan executive of that company, even though\nthe quality of the company\xe2\x80\x99s work for the SEC                The OIG opened this preliminary inquiry\nhad been poor. During its inquiry, the OIG               on April 28, 2010, in response to information\nrequested and searched the e-mails of the                received from a former headquarters man-\nmanager in question for a two-year period.               ager. The former manager alleged that a\nThe OIG also met with the current SEC Eth-               headquarters senior manager had an im-\nics Counsel and spoke with the former Ethics             proper relationship with an SEC contractor.\nCounsel concerning any advice or counseling              The complaint further alleged that the senior\nprovided to the manager by the SEC Ethics                manager and the SEC contractor had ongoing\nOf\xef\xac\x81ce. In addition, the OIG took the sworn               social interactions which led the senior man-\ntestimony of the manager to inquire about his            ager to exhibit favoritism and award contracts\nrelationship with the outside company and his            to certain outside contractors, including the\n                                                         contractor\xe2\x80\x99s company. Subsequent to the\n\n                                                   70\n\n\x0copening of this inquiry, and unrelated to our           quiry also found no evidence of instances\n\xef\xac\x81ndings, the senior manager was removed                 where the senior counsel or support specialist\nfrom her position and transferred to a non-             accepted material bene\xef\xac\x81ts from a prohibited\nsupervisory position.                                   source. Accordingly, we closed this inquiry on\n                                                        December 1, 2010.\n    During the course of this inquiry, the OIG\nreviewed and analyzed the information pro-\nvided by the complainant. The OIG also re-              INDICTMENT ARISING OUT OF\nviewed the senior manager\xe2\x80\x99s and the contrac-            PREVIOUS OIG INVESTIGATION\ntor\xe2\x80\x99s e-mail records and conducted interviews\nof other headquarters managers.                             An investigation conducted by the OIG\n                                                        during a prior reporting period (Report No.\n    The OIG found no evidence to substanti-             OIG-493) had found evidence that an em-\nate the former manager\xe2\x80\x99s allegation that the            ployee had intentionally falsi\xef\xac\x81ed her employ-\nsenior manager had an inappropriate relation-           ment application and supporting documents\nship with contractor personnel or engaged in            submitted to the SEC concerning her position\nimproper favoritism. Speci\xef\xac\x81cally, we found no           and grade at another federal agency. During\nevidence that the senior manager had a close            the OIG\xe2\x80\x99s investigation, the employee admit-\npersonal or social relationship with the par-           ted falsifying this data because she did not be-\nticular SEC contractor identi\xef\xac\x81ed, or that she           lieve she would qualify for the position at the\nfavored any particular contractor. Therefore,           SEC based upon her actual information. Be-\nthe OIG closed this preliminary inquiry on              cause the employee admitted to committing\nDecember 2, 2010.                                       serious criminal offenses, the OIG had re-\n                                                        ferred the matter to the Public Integrity Sec-\n  Complaints Regarding Procurement                      tion of the Criminal Division of the DOJ for\n  Violations (PI 09-02)                                 consideration of prosecution.\n\n    The OIG conducted an inquiry into a se-                  During this reporting period, on March\nries of complaints from the owner of a court            16, 2011, an indictment was returned against\nreporting services \xef\xac\x81rm alleging that an SEC             the former employee in the United States Dis-\nregional of\xef\xac\x81ce senior counsel and support spe-          trict Court for the Eastern District of Virginia\ncialist conspired to improperly prevent the             with four counts of making false statements,\n\xef\xac\x81rm from obtaining any contracting opportu-             three counts of submitting false documents,\nnities, in exchange for material bene\xef\xac\x81ts con-           and one count of engaging in a concealment\nveyed by a competitor. In its inquiry, the OIG          scheme. According to the indictment, the\nreviewed the applicable acquisition policies            former employee had worked in various posi-\nand procedures, examined the relevant pro-              tions with the U.S. Department of Defense\ncurement records, obtained pertinent e-mails,           from 1991 until March 2005, when she was\nand interviewed SEC attorneys and support               noti\xef\xac\x81ed she was being \xef\xac\x81red for performance\nstaff with knowledge of the matter.                     failures. In October 2006, according to the\n                                                        indictment, she resigned retroactive to March\n     The OIG inquiry found that the regional            2005 pursuant to a settlement agreement\nof\xef\xac\x81ce, throughout the period in question, con-          reached with the Department of Defense.\nsistently procured court reporting and deposi-\ntion services according to existing protocol in             According to the indictment, the former\ncompliance with the applicable FAR require-             employee applied for jobs at the U.S. Depart-\nments and SEC procedures. Furthermore, the              ments of State, Commerce, and Defense, as\nOIG found that the complainant\xe2\x80\x99s \xef\xac\x81rm had,               well as with the SEC, between 2006 and 2008.\nin fact, been utilized in numerous instances            Among the documents she submitted in ap-\nthroughout the period in question. Our in-              plying for these positions were SF-50 forms,\n                                                  71\n\n\x0cwhich are used by the federal government to          U.S. House of Representatives Committee on\ndocument and report certain personnel ac-            Oversight and Government Reform, and nu-\ntions such as hirings, promotions, conversions,      merous Congressional staff concerning their\nand separations; OF-306 forms, which are             requests for information pertaining to this\nused to determine an applicant\xe2\x80\x99s acceptability       matter.\nfor federal employment; and SF-86 forms,\nwhich are used in conducting background in-              As of the end of the reporting period, the\nvestigations for applicants and employees re-        OIG had collected approximately 1.7 million\nquiring a security clearance. According to the       e-mails of current and former SEC employees\nindictment, the former employee made false           with knowledge of the relevant facts and had\nstatements on her OF-306 and SF-86 forms             begun to search for and analyze pertinent\nand provided two federal agencies with               e-mails and document attachments. The OIG\nfraudulent versions of her SF-50 form. Spe-          also requested and obtained numerous docu-\nci\xef\xac\x81cally, the indictment alleged that the former     ments from various attorneys in the Of\xef\xac\x81ce of\nemployee concealed and falsi\xef\xac\x81ed information          the General Counsel, as well as pertinent in-\nin her application materials pertaining to her       formation from the Of\xef\xac\x81ce of the Secretary,\nprior arrests, charges, convictions, and prison      conducted research of the applicable statutes\nterms; the unfavorable circumstances under           and regulations and commenced informal in-\nwhich she resigned from prior federal em-            terviews of individuals with knowledge of the\nployment; her roles and responsibilities at pre-     facts at issue.\nvious federal jobs; and her salary history.\n                                                         In the next semiannual reporting period,\n    The SEC OIG and the FBI\xe2\x80\x99s Washington             the OIG will continue its e-mail review and\nField Of\xef\xac\x81ce investigated the case, which is be-      will request and search the e-mails of addi-\ning prosecuted by the DOJ Criminal Divi-             tional witnesses identi\xef\xac\x81ed during the course of\nsion\xe2\x80\x99s Public Integrity Section and the U.S.         the investigation. The OIG will also take the\nAttorney\xe2\x80\x99s Of\xef\xac\x81ce for the Eastern District of         sworn testimony of numerous individuals,\nVirginia.                                            both inside and outside the SEC, who have\n                                                     knowledge of the relevant facts and circum-\n                                                     stances. The OIG plans to complete its inves-\nPENDING INVESTIGATIONS                               tigation and issue a report of its \xef\xac\x81ndings prior\n                                                     to the end of the next reporting period.\nAllegations of Conflict of Interest by\nFormer Senior Official                               Allegation of Improprieties in the SEC\xe2\x80\x99s\n(Case No. OIG-560)                                   Leasing Activity (Case No. OIG-553)\n    During the reporting period, the SEC                 During the reporting period, the OIG\nChairman requested that the OIG investigate          opened an investigation after receiving several\nthe facts and circumstances surrounding the          complaints concerning actions and practices\nSEC former General Counsel\xe2\x80\x99s involvement in          related to the SEC\xe2\x80\x99s leasing activities. These\nactivities relating to the Bernard L. Madoff         activities include the SEC\xe2\x80\x99s execution of a let-\nPonzi scheme, after she learned that he and          ter contract dated July 28, 2010, committing\nhis brothers had been sued by the trustee ap-        the agency to lease 900,000 square feet of\npointed in the Madoff liquidation under the          space at Constitution Center in Washington,\nSecurities Investor Protection Act for the re-       D.C.\nturn of approximately $1.5 million in \xef\xac\x81ctitious\npro\xef\xac\x81ts received from the Ponzi scheme. The               In particular, the OIG is investigating the\nOIG immediately commenced the requested              basis for the decision that the SEC needed an\ninvestigation and met with the Honorable             additional 900,000 square feet of space for its\nDarrell Issa (R-California), Chairman of the         D.C. headquarters. The OIG is speci\xef\xac\x81cally\n                                                   72\n\n\x0cinvestigating whether the SEC may have im-               had been stayed pending a court ruling on a\nproperly used in\xef\xac\x82ated data and incorrect as-             motion in which the complainant made simi-\nsumptions regarding the amount of personnel              lar allegations to those contained in the initial\nthe SEC would add to its headquarters staff              complaint to the OIG. Because the court had\nthrough FY 2013.                                         direct jurisdiction over these similar claims,\n                                                         and was in a position to grant the relief sought\n     The OIG is also investigating whether               by the complainant, the OIG had deferred\nthere were improprieties in connection with              further investigation of the matter pending a\nthe preparation of the Justi\xef\xac\x81cation and Ap-              determination by the court on these claims.\nproval for Other than Full and Open Compe-\ntition used by the SEC to support its decision               In September 2010, the court entered an\nto lease space at Constitution Center.                   ordering denying without prejudice the com-\n                                                         plainant\xe2\x80\x99s motion containing the pertinent al-\n     Further, the OIG is investigating whether           legations that were brought to the OIG\xe2\x80\x99s at-\nthe SEC violated the Antide\xef\xac\x81ciency Act in                tention and did not address the merits of the\nobligating funds in connection with its com-             claims. In light of the court\xe2\x80\x99s ruling, the OIG\nmitment to lease space at Constitution Center,           decided to move forward with its investigation.\nand whether the SEC failed to properly notify\nthe Of\xef\xac\x81ce of Management and Budget about                      During this reporting period, the OIG ob-\nthe SEC\xe2\x80\x99s commitment to lease space at Con-              tained additional documentary evidence re-\nstitution Center.                                        garding the matters alleged in the complaint.\n                                                         The OIG also searched the e-mails of eight\n    During this reporting period, the OIG re-            SEC employees for the relevant time period,\nquested and reviewed numerous documents                  which amounted to a total of over 400,000\nprovided by the Of\xef\xac\x81ce of Administrative Serv-            e-mails. In addition, the OIG took the sworn\nices. The OIG also obtained and reviewed                 testimony of an important witness and sched-\nthe e-mails of 27 SEC employees for the rele-            uled the testimony of several other witnesses.\nvant time period, which amounted to a total of           The OIG intends to conclude its investigative\nover 1.5 million e-mails. The OIG took the               work and issue its report of investigation in\nsworn testimony of 15 SEC employees during               the next semiannual reporting period.\nthis reporting period. The OIG also con-\nducted interviews of four SEC employees and              Allegation of Improper Preferential\n\xef\xac\x81ve other individuals. The OIG plans to take             Treatment (Case No. OIG-559)\nfurther testimony, complete its investigative\nwork, and issue its report of investigation dur-             During the reporting period, the OIG\ning the next semiannual reporting period.                commenced an investigation into an anony-\n                                                         mous complaint that a prominent defense\nComplaint of Investigative Misconduct                    counsel was granted special access to a senior\nby Various Enforcement Attorneys                         SEC of\xef\xac\x81cial and received special treatment\n(Case No. OIG-511)                                       from that senior of\xef\xac\x81cial. Speci\xef\xac\x81cally, the\n                                                         complaint alleged that the senior of\xef\xac\x81cial had a\n    During the reporting period, the OIG                 secret conversation with a prominent defense\ncontinued its investigation of a complaint re-           lawyer representing the company, who was\nceived from counsel for a defendant in an                also a good friend and former colleague of the\nSEC enforcement action, alleging numerous                senior of\xef\xac\x81cial, and that during this secret con-\ninstances of misconduct by Enforcement at-               versation, the senior of\xef\xac\x81cial agreed to drop the\ntorneys during the course of an investigation.           contested fraud charges against an individual.\nAs noted in the OIG\xe2\x80\x99s previous Semiannual                The complaint also alleged that the staff was\nReport to Congress, the OIG investigation                later forced to drop the fraud charges that\n\n                                                   73\n\n\x0cwere part of the settlement with another indi-           SEC case, allegedly as a result of improper\nvidual.                                                  preferential treatment. In addition, it was al-\n                                                         leged that regional of\xef\xac\x81ce staff improperly pro-\n    The complaint further alleged that the               vided information related to that matter to the\nsenior of\xef\xac\x81cial\xe2\x80\x99s failure to apprise the staff of         law \xef\xac\x81rm.\nthe conversation before it occurred was con-\ntrary to previous OIG recommendations de-                    In this reporting period, the OIG neared\nsigned to address concerns about the appear-             completion of its investigative work. Speci\xef\xac\x81-\nance problems created by special access and              cally, we have reviewed numerous documents\npreferential treatment.                                  and taken the sworn testimony of the parties\n                                                         with knowledge of the facts or circumstances\n    The OIG obtained and reviewed thou-                  surrounding the allegations. The OIG intends\nsands of e-mails from approximately nine                 to conclude its investigative work and issue its\nSEC employees and prepared a detailed chro-              report of investigation in the next semiannual\nnology of events. The OIG also began                     reporting period.\nscheduling testimony of individuals with\nknowledge of the facts and circumstances of              Allegation of Unauthorized Disclosures\nthis matter and plans to conduct testimony               (Case No. OIG-555)\nand complete its investigation during the next\nreporting period.                                             The OIG opened an investigation into an\n                                                         internal referral alleging that a senior SEC\nAllegation of Failure to Investigate at a                of\xef\xac\x81cial made numerous unauthorized disclo-\nRegional Office (Case No. OIG-554)                       sures to the subject of an ongoing SEC en-\n                                                         forcement investigation and his related enti-\n    The OIG opened an investigation into an              ties. The complaint alleged that the afore-\nanonymous complaint alleging that a regional             mentioned disclosures occurred as far back as\nof\xef\xac\x81ce Enforcement program failed to timely               2006, and included legal advice provided by\ninvestigate a \xef\xac\x81nancial fraud referred by a re-           the senior SEC of\xef\xac\x81cial to the subject of the\ngional OCIE program for investigation in late            enforcement investigation.\n2004. According to the complaint, OCIE\xe2\x80\x99s\nexamination report detailed illegal conduct by               During the reporting period, the OIG re-\nan individual and his brokerage \xef\xac\x81rm in con-              viewed case documentation in preparation for\nnection with the purchase and sale of                    sworn witness testimony, which is scheduled\nmortgage-backed securities. The OIG is re-               for the next reporting period. The OIG hopes\nviewing case documentation in preparation                to complete its investigation and issue a report\nfor upcoming sworn witness testimony. The                of investigation in the next reporting period.\nOIG hopes to complete its investigation and\nissue a report of investigation in the next re-          Allegation of Procurement Violations\nporting period.                                          (Case No. OIG-556)\n\nAllegation of Improper Preferential                         During the reporting period, the OIG\nTreatment and Failure to Investigate                     continued its investigation of an anonymous\nAlleged Obstruction of SEC                               complaint alleging that the SEC awarded a\nInvestigation at Regional Office (Case                   contract for an unnecessary assessment to a\nNo. OIG-536)                                             \xef\xac\x81rm that the OIG previously found had con-\n                                                         veyed material bene\xef\xac\x81ts to SEC employees in\n     The OIG is continuing its investigation of\n                                                         2005.\na complaint that attorneys at a regional of\xef\xac\x81ce\nfailed to properly investigate a prominent law\n                                                             Speci\xef\xac\x81cally, the OIG obtained and re-\n\xef\xac\x81rm for alleged obstruction of an ongoing\n                                                         viewed over 30,000 e-mails of eight former\n\n                                                   74\n\n\x0cand current SEC employees and reviewed                  gations that SEC employees mismanaged a\nevidence provided by headquarters of\xef\xac\x81ces and            computer security lab and inappropriately\nvarious witnesses related to the procurement            used SEC funds to obtain equipment and\nof the assessment. In particular, the evidence          training associated with that lab. The com-\nincluded vendor proposals, requisition re-              plaint alleged that SEC staff used agency\nquests, and supporting documentation. \xc2\xa0In               funds for training without \xef\xac\x81ling appropriate\naddition, we researched laws and regulations            training forms, and inappropriately allocated\nregarding government solicitations, competi-            and spent signi\xef\xac\x81cant budget dollars on pur-\ntion requirements, and contract award re-               chasing equipment for the lab without justi\xef\xac\x81-\nquirements. Finally, the OIG took sworn tes-            cation or planning. The complaint also in-\ntimony of three individuals with knowledge of           cluded allegations regarding hiring proce-\nthe facts and circumstances surrounding the             dures, abuse of authority, and waste of SEC\nallegation. \xc2\xa0The OIG has nearly completed its           resources.\ninvestigative work and intends to issue its re-\nport of investigation in the next reporting pe-             The OIG plans to conduct sworn testi-\nriod.                                                   mony or interviews of individuals with knowl-\n                                                        edge of the relevant facts or circumstances\nComplaint of Mismanagement and                          surrounding the allegations and complete its\nInappropriate Use of Government                         investigation during the next reporting period.\nFunds (Case No. OIG-557)\n\n   During the reporting period, the OIG\nopened an investigation into anonymous alle-\n\n\n\n\n                                                  75\n\n\x0c76\n\x0cU.S. Securities and Exchange Commission\n\n\n                                                                       SEMIANNUAL\n                                                                       REPORT TO\n                                                                       CONGRESS\n                                                 Of\xef\xac\x81ce of\n                                                Inspector\n                                                 General\n\n\n\n\n                                           REVIEW OF LEGISLATION\n                                           AND REGULATIONS\n                                               During the semiannual reporting period,             and investigations conducted during the re-\n                                           the OIG reviewed legislation and proposed               porting period. For example, in connection\n                                           and \xef\xac\x81nal rules and regulations relating to the          with the OIG\xe2\x80\x99s audit of the SEC\xe2\x80\x99s Oversight of\n                                           programs and operations of the SEC, pursu-              the Securities Investor Protection Corporation\xe2\x80\x99s (SIPC)\n                                           ant to Section 4(a)(2) of the Inspector General         Activities (Report No. 495), the OIG closely\n                                           Act.                                                    reviewed and analyzed the various provisions\n                                                                                                   of the Securities Investor Protection Act\n                                               In this reporting period, the OIG contin-           (SIPA) of 1970, as amended, 15 U.S.C. \xc2\xa7\n                                           ued to review various portions of the Dodd-             78aaa, et seq. During our audit, we particu-\n                                           Frank Wall Street Reform and Consumer Pro-              larly reviewed and analyzed the amendments\n                                           tection Act (Dodd-Frank Act), Public Law                to SIPA that were made by the Dodd-Frank\n                                           111-203, enacted on July 21, 2010, that im-             Act and applicable to SIPA liquidations \xef\xac\x81led\n                                           posed new responsibilities on both the OIG              on or after July 22, 2010. In its audit report,\n                                           and the SEC as a whole. Speci\xef\xac\x81cally, the                which was issued on March 30, 2011, the\n                                           OIG carefully reviewed the provisions of Sec-           OIG recommended that the SEC\xe2\x80\x99s Division\n                                           tion 966 of the Dodd-Frank Act, 15 U.S.C. \xc2\xa7             of Trading and Markets update its internal\n                                           78d-4, in establishing policies and procedures          guidance to include, where appropriate, the\n                                           for the OIG Employee Suggestion Hotline,                amendments to SIPA that were made by the\n                                           which were issued on March 30, 2011. The                Dodd-Frank Act. In addition, the OIG\xe2\x80\x99s re-\n                                           OIG also reviewed provisions of the Dodd-               port recommended that the Division of Trad-\n                                           Frank Act that imposed new responsibilities             ing and Markets, in consultation with the\n                                           on the SEC with a view toward performing                Commission, determine whether to seek a leg-\n                                           future audit work to ensure the SEC properly            islative change to SIPA that would allow\n                                           implements its new responsibilities in a man-           bankruptcy judges who preside over SIPA liq-\n                                           ner that serves their intended purpose.                 uidations to assess the reasonableness of ad-\n                                                                                                   ministrative fees in all cases where administra-\n                                               The OIG also reviewed statutes, rules,              tive fees are paid by SIPC.\n                                           regulations, and requirements, and their im-\n                                           pact on Commission programs and opera-                     In addition, in the course of the OIG\xe2\x80\x99s\n                                           tions, within the context of audits, reviews,           Audit of the SEC Budget Execution Cycle (Report\n\n                                                                                             77\n\n\x0cNo. 488), the OIG reviewed the requirements         employees who leave executive branch em-\nof 31 U.S.C. \xc2\xa7 1301, commonly referred to as        ployment, 18 U.S.C. \xc2\xa7 207 and 5 C.F.R. \xc2\xa7\xc2\xa7\nthe Purpose Statute, and the Antide\xef\xac\x81ciency          2641.104, 2641.201, and 2641.202. The OIG\nAct, 31 U.S.C. \xc2\xa7\xc2\xa7 1341(a) and 1517(a), in the       also reviewed the SEC Rule of Conduct provi-\ncourse of analyzing whether the SEC had             sion containing post-employment require-\nproperly charged expenditures during the            ments speci\xef\xac\x81cally applicable to SEC employ-\navailability of a supplemental appropriation.       ees, 17 C.F.R. \xc2\xa7 200.735-8(b). In its investiga-\nDuring this audit, the OIG also reviewed Sec-       tion, the OIG observed that the OGE\xe2\x80\x99s ex-\ntion 991 of the Dodd-Frank Act, which estab-        emption, granted at the SEC\xe2\x80\x99s request, of all\nlished a separate SEC reserve fund appropria-       employees on the SEC\xe2\x80\x99s SK pay scale from\ntion effective in FY 2012. In its audit report,     the one-year ban on communications back to\nwhich was issued on March 29, 2011, the             the agency that applies to senior employees\nOIG made recommendations designed to en-            has allowed some highly-compensated SEC\nsure that the SEC\xe2\x80\x99s Of\xef\xac\x81ce of Financial Man-         employees holding prominent positions to\nagement has appropriate policies and guid-          evade the ban. The OIG recognized that the\nance in place to ensure the proper charging of      blanket exemption for SK employees opens\nexpenditures where multiple appropriations          the door to potential abuse and recommended\nare available for the same purpose and that         that the SEC Ethics Of\xef\xac\x81ce seek modi\xef\xac\x81cation\nthe SEC\xe2\x80\x99s budgetary system is capable of ac-        of the blanket exemption from OGE.\ncommodating multiple appropriations.\n                                                        Finally, in coordination with the Legisla-\n    During the OIG\xe2\x80\x99s investigation involving        tion Committee of the Council of the Inspec-\nthe revolving door between employment at the        tors General on Integrity and Ef\xef\xac\x81ciency and\nSEC and the securities industry, the OIG            other Inspectors General, the SEC OIG re-\ncarefully reviewed and analyzed the criminal        viewed, tracked, and analyzed various legisla-\nstatute and Of\xef\xac\x81ce of Government Ethics              tion of interest to the Inspector General\n(OGE) regulations imposing restrictions on          community. This legislation included bills in-\nmatters on which federal employees may work         troduced in the 111th Congress, such as S.\nwhile they are seeking or negotiating employ-       372, \xe2\x80\x9cThe Whistleblower Protection En-\nment with entities outside the federal govern-      hancement Act,\xe2\x80\x9d and bills introduced in the\nment, 18 U.S.C. \xc2\xa7 208 and 5 C.F.R. \xc2\xa7\xc2\xa7               112th Congress, such as S. 241, \xe2\x80\x9cThe Non-\n2635.402 and 2635.603. Likewise, the OIG            Federal Whistleblower Protection Act,\xe2\x80\x9d and S.\nreviewed and analyzed the criminal statute          300, \xe2\x80\x9cThe Government Charge Card Abuse\nand OGE regulations imposing restrictions on        Prevention Act.\xe2\x80\x9d\n\n\n\n\n                                                  78\n\n\x0cU.S. Securities and Exchange Commission\n\n\n                                                              SEMIANNUAL\n                                                              REPORT TO\n                                                              CONGRESS\n                                              Of\xef\xac\x81ce of\n                                             Inspector\n                                              General\n\n\n\n\n                                                         STATUS OF RECOMMENDATIONS WITH\n                                                             NO MANAGEMENT DECISIONS\n                                            Management decisions have been made on all audit reports issued\n                                                    before the beginning of this reporting period.\n\n\n                                                          REVISED MANAGEMENT DECISIONS\n\n                                                 No management decisions were revised during the period.\n\n\n                                             AGREEMENT WITH SIGNIFICANT MANAGEMENT DECISIONS\n\n                                           The Office of Inspector General agrees with all significant management\n                                                        decisions regarding audit recommendations.\n\n\n\n                                                  INSTANCES WHERE INFORMATION WAS REFUSED\n\n                                                         During this reporting period, there were no\n                                                         instances where information was refused.\n\n\n\n\n                                                                             79\n\n\x0c80\n\x0cTable 1\nList of Reports: Audits and Evaluations\n  Audit /\n                                           Title                              Date Issued\nEvaluation #\n\n               The SEC\xe2\x80\x99s Implementation of and Compliance with Homeland\n    481                                                                        3/31/2011\n                           Security Presidential Directive 12\n\n\n\n    487        Review of Select Time-and-Materials and Labor-Hour Contracts   12/23/2010\n\n\n\n    488                  Audit of the SEC Budget Execution Cycle               3/29/2011\n\n\n\n    489               2010 Annual FISMA Executive Summary Report                3/3/2011\n\n\n\n    493               OCIE Regional Offices\xe2\x80\x99 Referrals to Enforcement          3/30/2011\n\n\n                    SEC\xe2\x80\x99s Oversight of the Securities Investor Protection\n    495                                                                        3/30/2011\n                                 Corporation\xe2\x80\x99s Activities\n\n\n\n\n                                            81\n\x0c82\n\x0cTable 2\nReports Issued with Costs Questioned\nor Funds Put to Better Use\n(Including Disallowed Costs)\n\n                                                                 Number of\n                                                                               Value\n                                                                  Reports\nA. REPORTS ISSUED PRIOR TO THIS PERIOD\n\n  For which no management decision had been made on any issue\n     at the commencement of the reporting period                     4       $2,609,575.00\n  For which some decisions had been made on some issues at the\n     commencement of the reporting period                            1       $4,567,619.00\n\n\nB. REPORTS ISSUED DURING THIS PERIOD                                 5       $1,351,889.00\n\n\n\nTOTAL OF CATEGORIES A AND B                                         10       $8,529,083.00\n\n\nC. For which final management decisions were made during this\n     period                                                          6       $7,183,716.00\n\n\nD. For which no management decisions were made during this\n     period                                                          3       $1,345,367.00\n\n\nE. For which management decisions were made on some issues\n                                                                     0              $0.00\n     during this period\n\nTOTAL OF CATEGORIES C, D AND E                                       9       $8,529,083.00\n\n\n\n\n                                               83\n\n\x0c84\n\x0cTable 3\nReports with Recommendations on\nWhich Corrective Action Has Not Been\nCompleted\n               RECOMMENDATIONS OPEN 180 DAYS OR MORE\n\n   Audit/Inspection/           Issue Date           Summary of Recommendation\n     Evaluation or\nInvestigation # and Title\n439 - Student Loan Program     3/27/2008    In consultation with the Union, develop a detailed\n                                            distribution plan.\n446B - SEC\xe2\x80\x99s Oversight of      9/25/2008    Ensure the BDRA system includes financial\nBear Stearns and Related                    information, staff notes, and other written\nEntities: Broker-Dealer Risk                documentation and is used to generate\nAssessment (BDRA)                           management reports.\nProgram\n450 - Practices Related to      3/8/2009    Improve analytical capabilities of the Enforcement\nNaked Short Selling                         Complaint Center\xe2\x80\x99s e-mail complaint system.\nComplaints and Referrals\n                                            Improve the Complaints, Tips and Referrals\n                                            database to include additional information about and\n                                            better track complaints.\n                                            Ensure the Office of Internet Enforcement updates\n                                            and resumes using previous complaint referral\n                                            tracking system or develops a new system.\n456 - Public Transportation    3/27/2009    Implement additional management controls over\nBenefit Program                             regional office program operations.\n458 - SEC Oversight of         8/27/2009    Develop guidance regarding the types of\nNationally Recognized                       deficiencies, (e.g., overly broad disclosures) that\nStatistical Rating                          should prompt the Division of Trading and Markets\nOrganizations (NRSROs)                      to (1) seek consent from the applicant to waive the\n                                            90-day statutory time period for granting an\n                                            application for registration as an NRSRO, or (2)\n                                            recommend instituting proceedings to determine\n                                            whether registration should be denied.\n460 - Management and           3/26/2010    Identify the universe of open IAAs and the\nOversight of Interagency                    corresponding amounts obligated and expended on\nAcquisition Agreements                      each IAA, and reconcile the universe of open IAAs\n(IAAs) at the SEC                           with the financial information maintained by the\n                                            Office of Financial Management (OFM) regarding\n                                            open IAAs and the corresponding amounts\n                                            obligated and expended.\n                                            Maintain IAA data in the appropriate centralized\n                                            automated system to ensure appropriate access to\n                                            and accuracy of data and to provide for report\n                                            generation capabilities.\n                                            Establish appropriate internal controls to provide\n                                            reasonable assurance that, in the future, IAA data is\n                                            accurate, timely, complete, and reliable.\n\n\n                                            85\n\n\x0c   Audit/Inspection/         Issue Date           Summary of Recommendation\n     Evaluation or\nInvestigation # and Title\n                                          Promptly identify all IAAs that have expired but have\n                                          not been closed, and deobligate any funds that\n                                          remain on the expired agreements.\n                                          Take action to close the IAAs identified for which the\n                                          performance period expired and deobligate the $6.9\n                                          million in unused funds that remain on the IAAs, in\n                                          accordance with the appropriate close-out\n                                          procedures.\n                                          Assess the Mid-Atlantic Cooperative Administrative\n                                          Support Unit (CASU) IAA to determine if the costs\n                                          incurred are reasonable and the CASU IAA is in the\n                                          best interest of the Commission.\n                                          Consider sources of administrative support services\n                                          that charge lower amounts if it is determined that\n                                          the Mid-Atlantic CASU IAA does not provide the\n                                          best value to the Commission.\n                                          Provide additional training to contracting staff and\n                                          customers regarding IAAs, which includes training\n                                          on developing and ensuring the adequacy of\n                                          statements of work and statements of objectives\n                                          according to applicable guidance and requirements.\n461 - Review of the          3/31/2009    Develop and adopt policies and procedures for\nCommission\xe2\x80\x99s Restacking                   investments in space consistent with Office of\nProject                                   Management and Budget (OMB) guidance.\n466 - Assessment of the      3/26/2010    Formally delegate authority to the Chief Information\nSEC Information Technology                Officer (CIO) necessary for the management and\n(IT) Investment Process                   oversight of the Capital Planning and Investment\n                                          Control (CPIC) process, to include the full authority\n                                          to develop and execute all IT policy, as approved by\n                                          the Chairman.\n                                          Revise 17 C.F.R. \xc2\xa7 200.13 to provide the CIO with\n                                          full authority to develop and issue IT policies and\n                                          carry out the prescribed substantive responsibilities\n                                          under 44 U.S.C. \xc2\xa7 3506 and OMB guidance\n                                          M-09-02, and remove the CIO/Director of the Office\n                                          of Information Technology (OIT) from under the\n                                          supervision of the Executive Director or any position\n                                          other than the Chairman for those substantive\n                                          responsibilities.\n                                          Revise SEC Regulation (SECR) 24-02 to add a\n                                          responsibility that the division directors, office\n                                          heads, and regional directors ensure that all IT\n                                          investments within their responsibility adhere to the\n                                          CPIC policies and procedures, and create an\n                                          enforcement mechanism for the CIO and the\n                                          Information Officers Council to utilize when they\n                                          discover investments that have been funded outside\n                                          of the CPIC process.\n\n\n\n\n                                          86\n\n\x0c   Audit/Inspection/           Issue Date             Summary of Recommendation\n     Evaluation or\nInvestigation # and Title\n471 - Audit of the Office of   9/25/2009     Determine the universe of active and open contracts\nAcquisitions\xe2\x80\x99 Procurement                    and the corresponding value of the contracts and\nand Contract Management                      reconcile this information with the OFM\xe2\x80\x99s active\nFunctions                                    contract list.\n                                             Develop an internal process to ensure procurement\n                                             data is accurately and fully reported in the Federal\n                                             Procurement Data System for both SEC\n                                             headquarters and regional offices.\n                                             Develop an acquisition training plan to ensure\n                                             compliance with OMB\xe2\x80\x99s Office of Federal\n                                             Procurement Policy training requirements.\n                                             Revise and finalize data migration plan and include\n                                             key controls or steps to ensure accuracy of migrated\n                                             data.\n474 - Assessment of the        3/29/2010     Develop a communication plan to address outreach\nSEC\xe2\x80\x99s Bounty Program                         to both the public and SEC personnel regarding the\n                                             SEC bounty program, which includes efforts to\n                                             make information available on the SEC\xe2\x80\x99s intranet,\n                                             enhance information available on the SEC\xe2\x80\x99s public\n                                             website, and provide training to employees who are\n                                             most likely to deal with whistleblower cases.\n                                             Develop and post to the SEC\xe2\x80\x99s public website an\n                                             application form that asks whistleblowers to provide\n                                             information, including, e.g., (1) the facts pertinent to\n                                             the alleged securities law violation and an\n                                             explanation as to why the subject(s) violated the\n                                             securities laws; (2) a list of related supporting\n                                             documentation available in the whistleblower\xe2\x80\x99s\n                                             possession and available from other sources; (3) a\n                                             description of how the whistleblower learned about\n                                             or obtained the information that supports the claim,\n                                             including the whistleblower\xe2\x80\x99s relationship to the\n                                             subject(s); (4) the amount of any monetary rewards\n                                             obtained by the subject violator(s) (if known) as a\n                                             result of the securities law violation and how the\n                                             amount was calculated; and (5) a certification that\n                                             the application is true, correct, and complete to the\n                                             best of the whistleblower\xe2\x80\x99s knowledge.\n                                             Establish policies on when to follow up with\n                                             whistleblowers who submit applications to clarify\n                                             information in the bounty applications and obtain\n                                             readily available supporting documentation prior to\n                                             making a decision as to whether a whistleblower\xe2\x80\x99s\n                                             complaint should be further investigated.\n                                             Develop specific criteria for recommending the\n                                             award of bounties, including a provision that where\n                                             a whistleblower relies partially upon public\n                                             information, such reliance will not preclude the\n                                             individual from receiving a bounty.\n\n\n\n\n                                            87\n\n\x0c   Audit/Inspection/        Issue Date           Summary of Recommendation\n     Evaluation or\nInvestigation # and Title\n                                         Examine ways in which the Commission can\n                                         increase communications with whistleblowers by\n                                         notifying them of the status of their bounty requests\n                                         without releasing nonpublic or confidential\n                                         information during the course of an investigation or\n                                         examination.\n                                         Develop a plan to incorporate controls for tracking\n                                         tips and complaints from whistleblowers seeking\n                                         bounties into the development of the Division of\n                                         Enforcement\xe2\x80\x99s (Enforcement) tips, complaints, and\n                                         referrals processes and systems for other tips and\n                                         complaints, which should provide for the collection\n                                         of necessary information and require processes that\n                                         will help ensure that bounty applications are\n                                         reviewed by experienced Commission staff,\n                                         decisions whether to pursue whistleblower\n                                         information are timely made, and whistleblowers\n                                         who provide significant information leading to a\n                                         successful action for violation of the securities laws\n                                         are rewarded.\n                                         Require that a bounty file (hard copy or electronic)\n                                         be created for each bounty application, which\n                                         should contain at a minimum the bounty application,\n                                         any correspondence with the whistleblower,\n                                         documentation of how the whistleblower\xe2\x80\x99s\n                                         information was utilized, and documentation\n                                         regarding significant decisions made with regard to\n                                         the whistleblower\xe2\x80\x99s complaint.\n                                         Incorporate best practices from the Department of\n                                         Justice (DOJ) and the Internal Revenue Service\n                                         (IRS) into the SEC bounty program with respect to\n                                         bounty applications, analysis of whistleblower\n                                         information, tracking of whistleblower complaints,\n                                         recordkeeping practices, and continual assessment\n                                         of the whistleblower program.\n                                         Set a timeframe to finalize new policies and\n                                         procedures for the SEC bounty program that\n                                         incorporate the best practices from theDOJ and the\n                                         IRS, as well as any legislative changes to the\n                                         program.\n480 - Review of the SEC's   9/27/2010    Renew efforts that were begun in 2005 and\nSection 13(f) Reporting                  implement checks in the Electronic Data Gathering\nRequirements                             and Retrieval (EDGAR) system that will detect and/\n                                         or correct errors contained in the Forms 13F that are\n                                         uploaded in EDGAR.\n                                         Update Form 13F to a more structured format, such\n                                         as Extensible Markup Language (XML), to make it\n                                         easier for users and researchers to extract and\n                                         analyze Section 13(f) data.\n\n\n\n\n                                         88\n\n\x0c   Audit/Inspection/          Issue Date            Summary of Recommendation\n     Evaluation or\nInvestigation # and Title\n                                           Ensure that the SEC enters into a formal contract or\n                                           agreement with the third party that prepares the\n                                           official list required by Section 13(f)(3) of the\n                                           Securities Exchange Act of 1934 (Exchange Act).\n                                           This contract or agreement should document the\n                                           third party\xe2\x80\x99s responsibilities for providing the official\n                                           list on a quarterly basis and explicitly state that the\n                                           SEC has no financial obligation and the firm has no\n                                           expectation of payment from the government.\n                                           Determine whether legislative changes to Section\n                                           13(f) of the Exchange Act should be sought,\n                                           specifically with the respect to expanding the\n                                           definition of Section 13(f) securities, requiring\n                                           separate reporting of securities held in proprietary\n                                           accounts and customer accounts, reporting average\n                                           positions in Section 13(f) securities, and increasing\n                                           the Section 13(f) reporting threshold.\n                                           Update analysis of the impact of increasing the\n                                           reporting threshold of $100 million for Section 13(f)\n                                           of the Exchange Act.\n                                           Determine whether to recommend to the\n                                           Commission that it adopt a rule requiring\n                                           institutional investment managers to report\n                                           aggregate purchases and aggregate sales of\n                                           securities required to be reported under Section 13\n                                           (f) of the Exchange Act.\n483 - Audit of the            9/22/2010    Request a legal opinion from the Office of the\nFedTraveler Travel Service                 General Counsel regarding the amount and\n                                           frequency of fees charged by FedTraveler to ensure\n                                           that the charges are appropriate and in accordance\n                                           with the General Service Administration\xe2\x80\x99s (GSA)\n                                           Master Contract and the Commission\xe2\x80\x99s task order.\n484 - Real Property Leasing   9/30/2010    Revise SECR 11-03 and draft Operating Procedure\nProcurement Process                        (OP) 11-03 to ensure that they are adequate and\n                                           complete and include the information identified in\n                                           the audit report, finalize OP 11-03, and ensure that\n                                           the revised documents are posted to the\n                                           Commission\xe2\x80\x99s intranet site and circulated to staff\n                                           with leasing-related responsibilities.\n                                           Amend SECR 11-03 to include a complete list of\n                                           relevant authorities (federal statutes, regulations,\n                                           executive orders, OMB circulars, and internal SEC\n                                           policies) that apply to real property leasing and\n                                           finalize detailed guidance to ensure compliance with\n                                           those authorities.\n                                           Measure the SEC\xe2\x80\x99s real property leasing policies\n                                           and procedures against pertinent provisions of GSA\n                                           regulations, including the GSA Acquisition Manual\n                                           and Subchapter C of the Federal Management\n                                           Regulation, as appropriate.\n\n\n\n\n                                           89\n\n\x0c   Audit/Inspection/        Issue Date                 Summary of Recommendation\n     Evaluation or\nInvestigation # and Title\n                                               Ensure that the Leasing Branch\xe2\x80\x99s policies and\n                                               procedures, including OP 11-03 and the attached\n                                               checklists, provide comprehensive guidance,\n                                               including pertinent forms and examples, for SEC\n                                               leasing officials regarding the leasing process that\n                                               will assist in ensuring compliance with the\n                                               applicable policies, regulations, and best practices.\n                                               Utilize the \xe2\x80\x9cRequired Components\xe2\x80\x9d section of the\n                                               Federal Real Property Council\xe2\x80\x99s (FRPC) Guidance\n                                               for Improved Asset Management to develop and\n                                               finalize the SEC\xe2\x80\x99s real property leasing asset\n                                               management plan, as appropriate. If there are any\n                                               required components in the FRPC Guidance that\n                                               are found not applicable to the SEC, the plan should\n                                               include an explanation as to why the SEC\xe2\x80\x99s unique\n                                               circumstances render those components\n                                               unnecessary.\n                                               Amend leasing policies and procedures to require\n                                               the tracking and monitoring of all leasing expenses\n                                               (i.e., rent, operating costs, and taxes) for\n                                               informational and budget formulation purposes.\n                                               Develop performance goals for the SEC\xe2\x80\x99s real\n                                               property leasing activities, including both lease\n                                               acquisition and the monitoring and administration of\n                                               existing leases; identify key external factors that\n                                               could significantly affect the achievement of these\n                                               goals; and periodically evaluate whether these goals\n                                               are met.\n                                               Develop performance measures to assist in\n                                               evaluating the effectiveness of the major functions\n                                               of real property acquisitions and operations, and\n                                               periodically evaluate performance based on these\n                                               measures. The performance measures should\n                                               include metrics for all of the OAS Branches that\n                                               have a role in real property leasing, including the\n                                               Real Property Leasing, Construction, and Security\n                                               Branches.\n                                               Revise SEC Regulation 11-03 and draft OP 11-03 to\n                                               include complete written policies and procedures for\n                                               timely acquisition planning pertinent to real property\n                                               leases, including the preparation of a project plan\n                                               and schedule with projected dates for achieving\n                                               various milestones well in advance of the scheduled\n                                               commencement of a lease.\n                                               Adopt evaluation procedures that involve scoring\n                                               and ranking various options prior to deciding to\n                                               vacate leased premises or to terminate a lease, and\n                                               develop a transparent methodology for formulating\n                                               scores and rankings.\n\n\n\n\n                                         90\n\n\x0c   Audit/Inspection/        Issue Date                  Summary of Recommendation\n     Evaluation or\nInvestigation # and Title\n                                               Ensure that the SEC\xe2\x80\x99s real property leases provide\n                                               appropriate protections in the event the SEC needs\n                                               to terminate a lease before the expiration date, such\n                                               as, for example, the use of a termination for\n                                               convenience clause under Part 49 of the Federal\n                                               Acquisition Regulation, another appropriate clause,\n                                               or a flexible-term lease.\n                                               Revise the Security and Safety Survey document to\n                                               include more specific information, such as the\n                                               number of recent incidents in the vicinity, the\n                                               likelihood that future incidents will occur or\n                                               vulnerabilities will be exploited, recommended\n                                               countermeasures, and cost estimates for such\n                                               countermeasures.\n                                               Implement final policies and procedures to ensure\n                                               that the Real Property Leasing Branch consistently\n                                               includes the Building Security Survey document in\n                                               all solicitations for leased building space.\n                                               Implement final policies and procedures to ensure\n                                               that the Security Branch performs a physical review\n                                               of prospective building locations and determines the\n                                               threat within the immediate area prior to entering\n                                               into a lease for any facility.\n485 - Assessment of the     9/29/2010          Apply patches and updates to the Commission's\nSEC\xe2\x80\x99s Privacy Program                          networks, workstations, and laptops on a timely\n                                               basis. All future patches should be applied within a\n                                               specified time period of vendor release, with\n                                               emergency patches being applied on an ad hoc\n                                               basis to protect the agency\xe2\x80\x99s systems and data.\n                                               Evaluate risk assessment processes for scoring risk\n                                               to ensure that all appropriate factors are adequately\n                                               weighed, including the identification of risk levels by\n                                               vendors.\n                                               Submit a completed list of common security\n                                               standard deviations to the National Institute of\n                                               Standards and Technology per OMB requirements.\n                                               Implement an agency-wide policy regarding shared\n                                               folder structure and access rights, ensuring that only\n                                               the employees involved with a particular case have\n                                               access to that data. If an employee backs up\n                                               additional information to the shared resources, only\n                                               the employee and his or her supervisor should have\n                                               access.\n                                               Ensure personal storage tab (PST) files are saved\n                                               to a protected folder.\n                                               Ensure all file rooms and file cabinets are secured.\n                                               Conduct additional training to ensure that staff fully\n                                               understand the rules and policies concerning the\n                                               handling of Personally Identifiable Information and\n                                               sensitive data and their responsibilities in protecting\n                                               SEC information.\n\n\n\n\n                                         91\n\n\x0c   Audit/Inspection/          Issue Date                  Summary of Recommendation\n     Evaluation or\nInvestigation # and Title\n                                                 Finalize, approve, and implement operating\n                                                 procedures for \xe2\x80\x9cHard Drive Wiping and Media\n                                                 Destruction,\xe2\x80\x9d and make staff aware of the\n                                                 procedures and their roles and responsibilities for\n                                                 the disposal of portable media storage devices.\n                                                 These operating procedures must include\n                                                 information concerning the roles and responsibilities\n                                                 of all Commission employees in the proper\n                                                 destruction of portable media storage devices.\n                                                 Provide Commission staff training on handling,\n                                                 disposal, and storage of portable media storage\n                                                 devices.\n                                                 Provide secured bins for the disposal of portable\n                                                 media storage devices that are easily accessible to\n                                                 all Commission employees and clearly communicate\n                                                 the use and locations of these bins to all employees.\n486 - Review of PRISM         9/30/2010          Review the adequacy of trained project officers who\nAutomated Procurement                            are available to manage all current and anticipated\nSystem Support Contracts                         projects. If it is determined that sufficient qualified\n                                                 project officers are not available to manage all\n                                                 current and anticipated projects, the situation should\n                                                 be remedied by either providing an adequate\n                                                 number of qualified personnel, or implementing an\n                                                 alternative process for ensuring oversight of the\n                                                 projects.\n                                                 Implement internal procedures to limit contracting\n                                                 officers from also assuming project management\n                                                 and a Contracting Officer\xe2\x80\x99s Technical\n                                                 Representative\xe2\x80\x99s (COTR) responsibilities on the\n                                                 same project.\n                                                 Review existing contracts to ensure that a COTR is\n                                                 assigned to each contract, as appropriate.\n                                                 Evaluate the PRISM and financial system\n                                                 reconciliation tool to determine, on a cost-benefit\n                                                 basis, whether it would be feasible to correct the\n                                                 deficiencies identified, and then decide whether the\n                                                 corrections should be performed by Commission\n                                                 personnel, or by technically-competent contractor\n                                                 personnel.\nPI-09-05 - SEC Access Card    2/22/2010          Ensure, on a Commission-wide basis, that all\nReaders in Regional Offices                      regional offices are capable of capturing and\n                                                 recording building entry and exit information of\n                                                 Commission employees.\nPI-09-07 - Employee           3/10/2010          Review and update internal regulation and policy for\nRecognition Program and                          the SEC\xe2\x80\x99s Employee Recognition Program (ERP),\nGrants of Employee Awards                        and post the revised regulation and/or policy to the\n                                                 SEC\xe2\x80\x99s intranet site.\n                                                 Ensure the revised ERP regulation and/or policy\n                                                 specifically addresses whether informal recognition\n                                                 awards are authorized and, if so, what criteria,\n                                                 standards, and approvals pertain.\n\n\n\n\n                                           92\n\n\x0c   Audit/Inspection/             Issue Date                  Summary of Recommendation\n     Evaluation or\nInvestigation # and Title\n                                                    Ensure the revised ERP regulation and/or policy\n                                                    makes clear that appropriated funds may not be\n                                                    used to pay for employee parking as an award.\n                                                    Review various Budget Object Class (BOC) codes\n                                                    currently used for non-monetary employee awards,\n                                                    select the most apposite BOC and ensure all\n                                                    properly authorized non-monetary awards are\n                                                    charged to that BOC.\n                                                    Approve requests to use appropriated funds for non-\n                                                    monetary employee awards only after ensuring an\n                                                    authorized agency officer has approved the awards\n                                                    under statutory and regulatory authority.\nROI-470 - Allegations of         2/24/2010          Institute procedures to require that a decision be\nConflict of Interest and                            made, documented, and approved where\nInvestigative Misconduct                            Enforcement has informed the Commission it is\n                                                    continuing to consider recommending charges.\nROI-491 - Allegation of          3/29/2010          Make efforts to recapture a portion of additional\nFraudulently Obtained                               award fees a contractor obtained based on\nAward Fees                                          potentially inaccurate data.\n                                                    Assign all contracts over $1 million to staff at the\n                                                    level of Assistant Director or higher, as well as the\n                                                    Office of Acquisitions, which provides oversight for\n                                                    various SEC acquisitions.\nROI-496 - Allegations of          1/8/2010          Consider methods to ensure no appearance of\nConflict of Interest, Improper                      impropriety when a former SEC attorney represents\nUse of Non-Public                                   a company shortly after SEC work provided specific,\nInformation and Failure to                          sensitive information related to the company.\nTake Sufficient Action\nAgainst Fraudulent\nCompany\nROI-505 - Failure to Timely      2/26/2010          Ensure as part of changes to complaint handling\nInvestigate Allegations of                          system that databases used to refer complaints are\nFinancial Fraud                                     updated to accurately reflect status of investigations\n                                                    and identity of staff.\n                                                    Ensure as part of changes to complaint handling\n                                                    system that referrals are monitored to ensure they\n                                                    are being actively investigated and complainants\n                                                    are provided accurate information.\n                                                    Ensure as part of changes to case-closing system\n                                                    that cases that are not actively being investigated\n                                                    are closed promptly.\n                                                    Ensure as part of changes to case-closing system\n                                                    that Enforcement staff members have access to\n                                                    accurate information about the status of\n                                                    investigations and staff requests to close\n                                                    investigations.\n                                                    Ensure as part of changes to case-closing system\n                                                    that staff at all levels be appropriately trained in\n                                                    case-closing procedures.\n\n\n\n\n                                              93\n\n\x0c   Audit/Inspection/         Issue Date                  Summary of Recommendation\n     Evaluation or\nInvestigation # and Title\nROI-522 - Investigation of   9/30/2010          Create clear criteria for making Division of\nthe Circumstances                               Corporation Finance waiver determinations.\nSurrounding the SEC\xe2\x80\x99s\nProposed Settlements with\nBank of America\n                                                Disseminate the guidance for making Division of\n                                                Corporation Finance waiver determinations.\n                                                Articulate the rationale for a departure from stated\n                                                waiver decision criteria in a written decision or order.\nROI-524 - Improper Use of    7/23/2010          Disband the policy that allows employees to use\nLeave Without Pay (LWOP)                        LWOP to create a de facto part-time schedule and\nto Receive Full-Time                            require offices to follow the Collective Bargaining\nBenefits                                        Agreement.\n                                                Conduct an audit of all SEC employees to\n                                                determine whether employees regularly use LWOP\n                                                to create a part-time schedule but have not had their\n                                                benefits and leave reduced.\n                                                Identify improvements needed in the manner in\n                                                which the SEC manages and improves reduced\n                                                work hours.\n\n\n\n\n                                          94\n\n\x0cTable 4\nSummary of Investigative Activity\n\n\n                                 Cases                         Number\n\n\n      Cases Open as of 9/30/2010                                 16\n      Cases Opened during 10/01/2010 - 3/31/2011                 15\n      Cases Closed during 10/01/2010 - 3/31/2011                 20\n      Total Open Cases as of 3/31/2011                           11\n      Referrals to the Department of Justice for Prosecution     3\n      Prosecutions                                               1\n      Convictions                                                0\n      Referrals to Agency for Disciplinary Action                21\n\n\n\n                        Preliminary Inquiries                  Number\n\n\n      Inquiries Open as of 9/30/2010                             90\n      Inquiries Opened during 10/01/2010 - 3/31/2011             27\n      Inquiries Closed during 10/01/2010 - 3/31/2011             44\n      Total Open Inquiries as of 3/31/2011                       73\n      Referrals to the Department of Justice for Prosecution     2\n      Referrals to Agency for Disciplinary Action                11\n\n\n\n                         Disciplinary Actions                  Number\n\n\n      Removals (Including Resignations and Retirements)          7\n      Demotions                                                  0\n      Suspensions                                                2\n      Reprimands                                                 3\n      Warnings/Other Actions                                     1\n\n\n\n\n                                     95\n\n\x0c96\n\x0cTable 5\nSummary of Complaint Activity\n\n                                     Description             Number\n\n\nComplaints Pending Disposition at Beginning of Period          11\n\nHotline Complaints Received                                   106\n\nOther Complaints Received                                     266\n\nTotal Complaints Received                                     372\n\nComplaints on which a Decision was Made                       380\n\nComplaints Awaiting Disposition at End of Period               3\n\n\n\nDisposition of Complaints During the Period\n\nComplaints Resulting in Investigations                         9\n\nComplaints Resulting in Inquiries                              27\n\nComplaints Referred to OIG Office of Audits                    12\n\nComplaints Referred to Other Agency Components                150\n\nComplaints Referred to Other Agencies                          13\n\nComplaints Included in Ongoing Investigations or Inquiries     20\n\nResponse Sent/Additional Information Requested                 34\n\nNo Action Needed                                              120\n\n\n\n\n                                              97\n\n\x0c98\n\x0cTable 6\nReferences to Reporting Requirements\nof the Inspector General Act\n\nThe Inspector General Act of 1978, as amended, specifies reporting requirements for\nsemiannual reports to Congress. The requirements are listed below and indexed to the\napplicable pages.\n\n\n    Section            Inspector General Act Reporting Requirement                  Pages\n    4(a)(2)     Review of Legislation and Regulations                               77-78\n\n    5(a)(1)     Significant Problems, Abuses, and Deficiencies                      24-42,\n                                                                                    46-71\n    5(a)(2)     Recommendations for Corrective Action                               24-42,\n                                                                                    46-71\n    5(a)(3)     Prior Recommendations Not Yet Implemented                           85-94\n\n    5(a)(4)     Matters Referred to Prosecutive Authorities                         46-71,\n                                                                                      95\n    5(a)(5)     Summary of Instances Where Information Was Unreasonably              79\n                Refused or Not Provided\n    5(a)(6)     List of OIG Audit and Evaluation Reports Issued During the Period    81\n\n    5(a)(7)     Summary of Significant Reports Issued During the Period             24-42,\n                                                                                    46-71\n    5(a)(8)     Statistical Table on Management Decisions with Respect to            83\n                Questioned Costs\n    5(a)(9)     Statistical Table on Management Decisions on Recommendations         83\n                That Funds Be Put To Better Use\n    5(a)(10)    Summary of Each Audit, Inspection or Evaluation Report Over Six      79\n                Months Old for Which No Management Decision Has Been Made\n    5(a)(11)    Significant Revised Management Decisions                             79\n\n    5(a)(12)    Significant Management Decisions with Which the Inspector            79\n                General Disagreed\n    5(a)(14)    Appendix of Peer Reviews Conducted by Another OIG                    101\n\n\n\n\n                                           99\n\n\n\x0c100\n\x0c                                                                          APPENDIX A \n\n\nPEER REVIEWS OF OIG OPERATIONS\n\n\nPeer Review of the SEC OIG\xe2\x80\x99s Audit Operations\n\nDuring the semiannual reporting period, the SEC OIG did not have an external peer review\nconducted of its audit operations. Peer reviews of OIG audit operations are required to be\nconducted every three years. The most recent peer review of the SEC OIG\xe2\x80\x99s audit operations\nwas conducted by the Corporation for Public Broadcasting (CPB) OIG. The CPB OIG issued its\nreport on the SEC OIG\xe2\x80\x99s audit operations in January 2010. This report concluded that the SEC\nOIG\xe2\x80\x99s system of quality for its audit function was designed to meet the requirements of the\nquality control standards established by the U.S. Comptroller General in all material respects.\nThe report is available on our website at http://www.sec-\noig.gov/Reports/Other/CPB_PeerReviewSEC.pdf.\n\n\nPeer Review of the SEC OIG\xe2\x80\x99s Investigative Operations\n\nDuring the semiannual reporting period, the SEC OIG did not have an external peer review of its\ninvestigative operations. Peer reviews of Designated Federal Entity OIGs, such as the SEC OIG,\nare conducted on a voluntary basis. The most recent peer review of the SEC OIG\xe2\x80\x99s investigative\noperations was conducted by the U.S. Equal Employment Opportunity Commission (EEOC)\nOIG. The EEOC OIG issued its report on the SEC OIG\xe2\x80\x99s investigative operations in July 2007.\nThis report concluded that the SEC OIG\xe2\x80\x99s system of quality for the investigative function\nconformed to the professional standards established by the President\xe2\x80\x99s Council on Integrity &\nEfficiency and the Executive Council on Integrity & Efficiency (now the Council of the\nInspectors General on Integrity & Efficiency).\n\n\n\n\n                                              101 \n\n\x0c\x0c                                           Appendix B\n\n\n\n\n\n       Written Testimony of H. David Kotz \n\n             Inspector General of the \n\n       Securities and Exchange Commission \n\n\n\n\n\n Before the Subcommittee on Financial Services and \n\nGeneral Government, Committee on Appropriations, \n\n            U.S. House of Representatives\n\n\n           Thursday, February 10, 2011 \n\n                   10:00 a.m.\n\n\n\n\n                        103\n\n\x0cAppendix B \n\n\n                                       Introduction\n\n       Thank you for the opportunity to testify before this Subcommittee with respect to\n\nthe Securities and Exchange Commission (SEC or Commission). I appreciate the interest\n\nof the members of the Subcommittee in the SEC and the Office of Inspector General\n\n(OIG). In my testimony, I am representing the OIG, and the views that I express are\n\nthose of my Office, and do not necessarily reflect the views of the Commission or any\n\nCommissioners.\n\n                                     Role of the OIG\n\n       I would like to begin my remarks by briefly discussing the role of my Office and\n\nthe oversight efforts we have undertaken during the past few years. The OIG is an\n\nindependent office within the SEC that conducts audits of programs and operations of the\n\nCommission and investigations into allegations of misconduct by agency staff or\n\ncontractors. The OIG, in accordance with the Inspector General Act of 1978, as\n\namended, does not make policy decisions for the SEC and/or substantive determinations\n\nregarding the Commission\xe2\x80\x99s program functions or budgetary process. Rather, the OIG\xe2\x80\x99s\n\nmission is to promote the integrity, efficiency and effectiveness of the programs and\n\noperations of the SEC and to report its findings and recommendations to the agency and\n\nto Congress. Since my appointment as Inspector General of the SEC in December 2007,\n\nthe OIG\xe2\x80\x99s investigative and audit units have engaged in aggressive and vigorous\n\noversight of the SEC.\n\n                                SEC OIG Investigations\n\n       The Office\xe2\x80\x99s investigations unit has conducted numerous comprehensive\n\ninvestigations into significant failures of the SEC in accomplishing its regulatory mission,\n\n\n\n\n                                            104\n\n\x0c                                                                            Appendix B\n\n\nas well as investigations into allegations of violations of statutes, rules and regulations,\n\nand other misconduct by Commission employees and contractors. Several of these\n\ninvestigations involved senior-level Commission officials and represent matters of great\n\nconcern to the Commission, Congressional officials and the general public. Where\n\nappropriate, we have reported evidence of improper conduct and made recommendations\n\nfor disciplinary actions, including removal of employees from the Federal service, as well\n\nas recommendations for improvements in agency policies, procedures and practices.\n\n       Specifically, we have issued investigative reports regarding a myriad of\n\nallegations, including claims of failures by the Division of Enforcement (Enforcement) to\n\npursue investigations vigorously or in a timely manner, improper securities trading by\n\nCommission employees, conflicts of interest by Commission staff, post-employment\n\nviolations, unauthorized disclosure of non-public information, procurement violations,\n\npreferential treatment given to prominent persons, retaliatory termination, perjury and\n\nfalsification of documents, failure of SEC attorneys to maintain active bar status, and the\n\nmisuse of official position, government resources and official time.\n\n       In August 2009, we issued a 457-page report of investigation analyzing the\n\nreasons why the SEC failed to uncover Bernard Madoff\xe2\x80\x99s $50 billion Ponzi scheme. This\n\nreport was issued after a nine-month investigation in which we conducted 140 interviews\n\nand reviewed approximately 3.7 million e-mails. In March 2010, we issued a thorough\n\nand comprehensive report of investigation regarding the history of the SEC\xe2\x80\x99s\n\nexaminations and investigations of Robert Allen Stanford\xe2\x80\x99s alleged $8 billion Ponzi\n\nscheme. More recently, we issued reports on the circumstances surrounding the SEC\xe2\x80\x99s\n\nproposed settlements with Bank of America, which included an analysis of the impact of\n\n\n\n\n                                             105\n\n\x0cAppendix B \n\n\nBank of America\xe2\x80\x99s status as a Troubled Asset Relief Program (TARP) recipient on the\n\nSEC\xe2\x80\x99s Enforcement action and settlement, and allegations of improper coordination\n\nbetween the SEC and other governmental entities concerning the SEC\xe2\x80\x99s Enforcement\n\naction against Goldman Sachs & Co.\n\n                                    SEC OIG Audits\n\n\n       The Office\xe2\x80\x99s audit unit has also issued numerous reports involving matters critical\n\nto SEC programs and operations and the investing public. These have included an\n\nexamination of the Commission\xe2\x80\x99s oversight of Bear Stearns and the factors that led to its\n\ncollapse, an audit of Enforcement\xe2\x80\x99s practices related to naked short selling complaints\n\nand referrals, a review of the SEC\xe2\x80\x99s bounty program for whistleblowers, an analysis of\n\nthe SEC\xe2\x80\x99s oversight of credit rating agencies, an audit of the SEC\xe2\x80\x99s real property and\n\nleasing procurement process and an audit of the FedTraveler travel service. In addition,\n\nfollowing the investigative report related to the Madoff Ponzi scheme described above,\n\nwe performed three comprehensive reviews providing the SEC with 69 specific and\n\nconcrete recommendations to improve the operations of both Enforcement and the SEC\xe2\x80\x99s\n\nOffice of Compliance Inspections and Examinations (OCIE.)\n\n\n              SEC OIG\xe2\x80\x99s Identification of Waste of Government Funds\n\n       Over the past three years, many of our efforts have been directed at identifying\n\nwaste or misuse of government funds by the SEC. We have issued numerous reports in\n\nwhich we identified waste and inefficiencies, as well as inadequate oversight on the part\n\nof various SEC components. By reviewing our audit and investigative reports issued\n\nover the past three years, we found that the two largest areas in which we have identified\n\n\n\n\n                                           106\n\n\x0c                                                                           Appendix B\n\n\nsignificant waste and inefficiencies have been procurement and contracting and costs\n\nrelating to real property leasing and office moves.\n\n       In the procurement and contracting area, we have identified numerous\n\ndeficiencies in the management and oversight of contracts into which the SEC has\n\nentered, a lack of written internal policies and procedures for administering contracts and\n\nother agreements, a failure to maintain accurate records and data regarding contracts and\n\nagreements, and improprieties in the selection of vendors and the awarding of contracts.\n\nThese failures have led to the cancellation of contracts and the expenditure of funds to re-\n\nprocure required services.\n\n       In addition, numerous OIG investigations, audits and reviews have revealed\n\nsignificant excessive costs and inefficiencies in connection with the SEC\xe2\x80\x99s leasing of real\n\nproperty and the relocation of staff offices. We found numerous situations in which the\n\nSEC made excessive payments that could have been avoided if appropriate policies and\n\nprocedures had existed and been followed. We also found that SEC management\n\napproved a project to re-configure internal office staff space at a significant monetary\n\ncost without performing any cost-benefit analysis of the project prior to its undertaking.\n\nAn OIG survey to the Commission staff affected by the moves revealed that they were\n\nsatisfied with their workplace locations prior to the project and generally felt the project\n\nwas a waste of time and money.\n\n                    SEC OIG\xe2\x80\x99s Follow-up on its Recommendations\n\n       In the instances that I described in which our Office found wasteful expenditures\n\nand inefficiencies, we have provided SEC management with detailed descriptions of our\n\nfindings, as well as concrete and specific recommendations to alleviate the problems and\n\n\n\n\n                                             107\n\n\x0cAppendix B \n\n\nconcerns we identified. We have also followed up to ensure that these recommendations\n\nhave been agreed to and are fully implemented. We are pleased to report that the\n\noverwhelming majority of our recommendations have been implemented and,\n\naccordingly, we are confident that the situations we identified have been ameliorated and\n\nwill not recur.\n\n                  Funding Necessary to Implement OIG Recommendations\n\n       We have also made recommendations designed to increase the SEC\xe2\x80\x99s oversight\n\ncapability and its internal controls. In certain instances, it has been and will be necessary\n\nfor the SEC to incur additional expenses in order to implement our recommendations.\n\nFor example, after our investigative report found that the SEC failed to respond\n\nappropriately to credible tips and complaints about Bernard Madoff\xe2\x80\x99s operations by\n\nconducting competent examinations and investigations, we made numerous\n\nrecommendations designed to reform the SEC\xe2\x80\x99s system for handling tips and complaint\n\nsystem. The SEC has implemented these recommendations and instituted a new Tip,\n\nComplaint and Referral (TCR) system in order to ensure that complaints received are\n\nacted upon in a timely and appropriate manner at a total cost of approximately $21\n\nmillion. Additional funding will be required to ensure that the SEC has sufficient\n\nresources to implement many of the recommendations that have arisen, and will arise, out\n\nof our audits, reviews and investigations.\n\n         Identification of Efficiencies Within SEC Operations and Functions\n\n       We are also pleased to report that senior SEC officials, particularly those within\n\nthe Office of Information Technology (OIT), have informed us that they are analyzing the\n\nSEC\xe2\x80\x99s operations and functions to identify efficiencies and areas in which costs can be\n\n\n\n\n                                             108\n\n\x0c                                                                          Appendix B\n\n\nreduced. The SEC\xe2\x80\x99s new Chief Information Officer has recently indicated that he plans\n\nto cancel a $2 million information technology contract that he found not to be cost-\n\neffective. We support and applaud these efforts and will continue to encourage this type\n\nof approach in the future.\n\n                                        Conclusion\n\n\n       I believe that the SEC\xe2\x80\x99s mission of protecting of investors, maintaining fair,\n\norderly, and efficient markets, and facilitating capital formation, is more important than\n\never. As our nation\xe2\x80\x99s securities exchanges mature into global for-profit competitors,\n\nthere is even greater need for sound market regulation. At the same time, the SEC has a\n\nresponsibility to utilize government funds in an efficient and effective manner. The OIG\n\nintends to remain vigilant to ensure that scarce government resources are utilized wisely\n\nand cost-effectively and instances of waste and abuse are eliminated.\n\n\n       I appreciate the interest of the Subcommittee in the SEC and my Office. I believe\n\nthat the Subcommittee\xe2\x80\x99s and Congress\xe2\x80\x99s continued involvement with the SEC is helpful\n\nto strengthen the accountability and effectiveness of the Commission. Thank you.\n\n\n\n\n                                            109\n\n\x0c\x0c   Help ensure the integrity of SEC operations by reporting to the OIG suspected fraud,\nwaste or abuse in SEC programs or operations, and SEC staff or contractor misconduct by\ncontacting the OIG.\n\n   Call:\n   Hotline\t \t        (877) 442-0854\n\n   Main Of\xef\xac\x81ce\t       (202) 551-6061\n\n\n   Web-Based Hotline Complaint Form:\n   www.sec-oig.gov/ooi/hotline.html\n\n   Fax:\t      \t      (202) 772-9265\n\n   Write:\n   Of\xef\xac\x81ce of Inspector General\n   U.S. Securities and Exchange Commission\n\n   100 F Street, N.E.\n\n   Washington, D.C. 20549\n\n\n   Email:\n   oig@sec.gov\n\n\n                    Information received is held in con\xef\xac\x81dence upon request.\n\n       While the OIG encourages complainants to provide information on how they may be \n\n        contacted for additional information, anonymous complaints are also accepted.\n\n\n\n\n\n                                         101\n\x0cU.S. Securities\nand Exchange\n Commission\n\n\n\n\n     Additional copies of this report may be obtained by contacting the \n\n                Office of Inspector General at (202) 551-6061.\n\n\n      The report is also available on the Inspector General\xe2\x80\x99s website at \n\n                           http://www.sec-oig.gov.\n\n\x0c"